idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

The Threat Hunting In Rapid Iterations (THIRI) Jupyter notebook is designed as a research aide to let you rapidly prototype threat hunting rules.

Pulled Pork for Snort3 rule management

SNORT GUI: Your very own trusted blueteam forensic companion for SNORT IDS.

Create basic Suricata and Snort signatures to detect an inbound SSL Cert for a single domain as well as a domain in the outbound TLS SNI field.

My personal research repository for a Master Degree in Computer Technology @ University of Computer Studies, Mandalay (UCSM).

Ryu based Software Defined Network applications implementing a Digital Forensic Readiness framework using the Snort IDS.

Complemento e instalación de SNORT

A tool for simplifying network administration. Gets log messages from Snort IDS, processes them, classifies them as either THREAT / NOT_THREAT then creates a pop up window incase of a threat.

A Snort unified file to database processor, similar to barnyard but with better handling of large Snort deployments

code to learn Python 3

A quick and easy way to turn traffic generated by exploit script in to network capture (i.e. PCAP) files.

Replay netflow/sflow captured data as regular IP traffic to a network interface

本科毕业设计作图的代码

Simple parser for snort. Simple IDS project.

Tool that 'plays' Snort rules as network traffic. Useful for validating if existing toolsets will detect malicious traffic.

Basic Implementation of Snort as a IDS to detect certain attacks.