There are 12 repositories under nsm topic.
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
The Hybrid/Multi-cloud IP Service Mesh
Passive DNS Capture and Monitoring Toolkit
The tool for updating your Suricata rules.
Suricata rules for network anomaly detection
A curated list of awesome things related to Suricata
Assists music production by grouping standalone programs into sessions. Community version of "Non Session Manager".
Mapping NSM rules to MITRE ATT&CK
Threat Hunting with ELK Workshop (InfoSecWorld 2017)
A package manager for Zeek
Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))
Application and service identification rules for Suricata
Suricata rule and intel index
A Docker container for Moloch based on ubuntu
A curated list of FOSS software appliances for building a SOC
Network Service Mesh examples repo
Materials for the BSides NoVA/Charleston 2018 Bro Workshop
This repo holds the containers for HPC applications used and deployed by CDAC SSDG. It is a single point of contact for the container related issues or support required
Create basic Suricata and Snort signatures to detect an inbound SSL Cert for a single domain as well as a domain in the outbound TLS SNI field.
Collect and parse Bro logs with Logstash+Filebeat
A saltstack formula to install BRO network security monitor on RHEL or Debian based systems
Suricata config to apply IDPS mode on Ubuntu 18.04 LTS
Templates for writing applications using Zeek NSM communication library Broker