Stamus Networks

SELKS

A Suricata based IDS/IPS/NSM distro

scirius

Scirius is a web application for Suricata ruleset management and threat hunting.

Amsterdam

Docker based Suricata, Elasticsearch, Logstash, Kibana, Scirius aka SELKS

gophercap

Accurate, modular, scalable PCAP manipulation tool written in Go.

suricata-language-server

Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and auto-completion to your preferred editor once it is configured.

suricata-4-analysts

The Security Analyst’s Guide to Suricata

KTS5

Kibana 5 Templates for Suricata IDPS

KTS

Kibana 4 Templates for Suricata IDPS

KTS7

Kibana 7 Templates for Suricata IDPS Threat Hunting

KTS6

Kibana 6 Templates for Suricata IDPS Threat Hunting

suricata-analytics

surimisp

Check IOC provided by a MISP instance on Suricata events

ansible-misp

Ansible playbook to install Malware Information Sharing Platform (MISP)

bpfctrl

Utility based on bpftool to manage eBPF maps

stamus_for_splunk

The Stamus Networks App for Splunk allows Splunk Enterprise users to extract information and insights from both the Stamus Security Platform and open source Suricata sensors.

scirius-docker

Scirius docker container

selks-scripts

SELKS scripts

suricata-docker

stamus-luajit-scripts

Stamus luajit scripts for use with Suricata IDPS

suricata-ls-vscode

VScode part of the Suricata Language Server

pktcity-js

3D visualization of Suricata alerts

Cortex-Analyzers

Cortex Analyzers Repository

cortex-content

Demisto is now Cortex XSOAR. Automate and orchestrate your Security Operations with Cortex XSOAR's ever-growing Content Repository. Pull Requests are always welcome and highly appreciated!

labs

Stamus Labs content

stamus-qa-docker

Dockerfile used for QA

suricata-update

The tool for updating your Suricata rules.

suricata-intel-index

Suricata rule and intel index