suricata

Star

Here are 253 public repositories matching this topic...

Language:All

Filter by language

All253 Python74 Shell41 Go15 C8 Jupyter Notebook8 JavaScript6 HTML5 Lua5 Rust5 Jinja4

Sort:Most stars

Sort options

Most stars Fewest stars Most forks Fewest forks Recently updated Least recently updated

OISF /suricata

Star5.8k

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

security cybersecurity suricata ids network-monitoring threat-hunting nsm ips intrusion-detection-system network-monitor intrusion-prevention-system

UpdatedNov 26, 2025
C

cisagov /Malcolm

Star2.3k

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

security pcap cybersecurity suricata infosec network-security zeek opensearch network-traffic-analysis networksecurity arkime opensearch-dashboards networktrafficanalysis

UpdatedNov 5, 2025
Python

deepfence /PacketStreamer

Star1.9k

⭐ ⭐ Distributed tcpdump for cloud native environments ⭐ ⭐

pcap secops suricata packet-sniffer network-analysis soc hacktoberfest observability traffic-monitoring packet-capture zeek snort security-tools tcpdump-like infosectools forensics-tools

UpdatedJul 1, 2024
Go

StamusNetworks /Clear-NDR-ISO

Star1.6k

A Suricata based NDR distribution

linux security distribution gui monitoring network management suricata ids user-interface threat-hunting ips network-security network-intrusion-detection security-monitoring

UpdatedSep 13, 2025
Shell

al0ne /suricata-rules

Star1.2k

Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

security suricata ids signatures suricata-rule

UpdatedJul 8, 2023

tenzir /tenzir

Sponsor

Star708

Tenzir is the data pipeline engine for security teams.

security netflow pcap incident-response pipelines dataops suricata siem sigma soc hacktoberfest zeek investigation threathunting secdataops

UpdatedNov 28, 2025
C++

StamusNetworks /scirius

Star668

Scirius is a web application for Suricata ruleset management and threat hunting.

python security gui interface detection management cybersecurity suricata user-interface signatures threat-hunting network-security network-intrusion-detection suricata-rules

UpdatedSep 8, 2025
Python

iqiyi /qnsm

Star527

QNSM is network security monitoring framework based on DPDK.

security dpdk suricata network-analysis network-security anti-ddos kernel-bypass

UpdatedSep 27, 2021
C

jasonish /evebox

Sponsor

Star472

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

security suricata ids nsm ips netsec

UpdatedNov 17, 2025
Rust

V1D1AN /S1EM

Star464

This project is a SIEM with SIRP and Threat Intel, all in one.

docker elasticsearch kibana logstash filebeat malware suricata misp thehive cortex sigma yara zeek opencti mwdb n8n velociraptor arkime zircolite

UpdatedNov 20, 2024
Shell

idaholab /Malcolm

Star446

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

security pcap cybersecurity suricata infosec network-security zeek opensearch network-traffic-analysis networksecurity arkime opensearch-dashboards networktrafficanalysis