GitHub topics: suricata-rules

Repositories

ajest983/Attack-Suricata-Rules

此Suricata IDS Rules 用于检测网络攻击行为，支持常见C2工具/中间件漏洞利用/Frp隧道/HTTP隧道/TCP隧道/常见webshell/redis未授权/Shiro反序列化/Fastjson反序列化/挖矿/SQL注入等特征

Size: 15.4 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 15 - Forks: 3

frknaykc/Dragon-ThreatResearchHQ

A comprehensive repository for malware analysis and threat intelligence, including Cobalt Strike Beacon configurations, YARA rules, IOCs, Suricata rules, and malware samples to support cybersecurity efforts.

Language: YARA - Size: 462 KB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 9 - Forks: 1

Koen1999/suricata-check

suricata-check is a command line utility to provide feedback on Suricata rules. The tool can detect various issues including those covering syntax validity, interpretability, rule specificity, rule coverage, and efficiency.

Language: Python - Size: 537 KB - Last synced at: 15 days ago - Pushed at: 4 months ago - Stars: 14 - Forks: 1

m-chrome/py-suricataparser

Pure python parser for Snort/Suricata rules.

Language: Python - Size: 43.9 KB - Last synced at: 20 days ago - Pushed at: over 1 year ago - Stars: 33 - Forks: 11

volexity/threat-intel

Signatures and IoCs from public Volexity blog posts.

Language: Python - Size: 969 KB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 354 - Forks: 58

StamusNetworks/scirius

Scirius is a web application for Suricata ruleset management and threat hunting.

Language: Python - Size: 12.9 MB - Last synced at: 4 months ago - Pushed at: 4 months ago - Stars: 649 - Forks: 149

sudohyak/suricata-rules

Suricata rules for the new critical vulnerabilities

Size: 44.9 KB - Last synced at: 4 months ago - Pushed at: over 4 years ago - Stars: 82 - Forks: 24

daffainfo/suricata-rules

Suricata rules that can detect a wide range of threats, including malware, exploits, and other malicious activity especially web application attacks

Language: Python - Size: 27.3 KB - Last synced at: 4 months ago - Pushed at: over 1 year ago - Stars: 44 - Forks: 6

tweedge/quickburn Fork of da667/dns2snort

Given a file containing a list of fully qualified DNS domains, quickburn generates IDS rules which detect those domains (and their subdomains) in DNS queries, HTTP Host header, SNI in TLS ClientHello packets, or all of the above!

Language: Python - Size: 42 KB - Last synced at: 7 days ago - Pushed at: over 2 years ago - Stars: 2 - Forks: 0

0xtf/nsm-attack

Mapping NSM rules to MITRE ATT&CK

Size: 35.2 KB - Last synced at: 24 days ago - Pushed at: about 5 years ago - Stars: 71 - Forks: 24

jakewarren/suricata-rule-generator

Quickly generate suricata rules for IOCs

Language: Go - Size: 224 KB - Last synced at: 6 days ago - Pushed at: over 4 years ago - Stars: 29 - Forks: 8

Asmae-Amahrouk/Anti-Ransomware

Implementing Anti-Ransomware using an IDS based on signatures and an IDS based on system behavior using Machine Learning.

Language: Python - Size: 983 KB - Last synced at: 3 months ago - Pushed at: 6 months ago - Stars: 1 - Forks: 0

aleksibovellan/opnsense-suricata-nmaps

OPNSense's Suricata IDS/IPS Detection Rules Against NMAP Scans

Size: 488 KB - Last synced at: 6 months ago - Pushed at: 7 months ago - Stars: 65 - Forks: 4

m-chrome/go-suricataparser

Golang Suricata/Snort rules parser and generator

Language: Go - Size: 18.6 KB - Last synced at: 10 months ago - Pushed at: about 1 year ago - Stars: 9 - Forks: 2

3CORESec/testmynids.org

A website and framework for testing NIDS detection

Language: Shell - Size: 5.23 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 185 - Forks: 16

SaifulI57/surim

Surim is a command-line tool for merging Suricata rule files. It consolidates multiple .rules files from an input directory into a single output file, automatically creates missing directories, and provides clear error messages. Ideal for managing Suricata rules efficiently.

Language: Go - Size: 20.5 KB - Last synced at: 5 months ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0