https://github.com/travisbgreen/hunting-rules

Suricata rules for network anomaly detection
https://github.com/travisbgreen/hunting-rules

anomaly-detection cyber-threat-intelligence cybersecurity ids lateral-movement network-monitoring network-security nsm suricata suricata-rule threat-hunting threat-intelligence

Last synced: 5 months ago
JSON representation

Suricata rules for network anomaly detection

• Host: GitHub
• URL: https://github.com/travisbgreen/hunting-rules
• Owner: travisbgreen
• License: gpl-3.0
• Created: 2018-11-11T17:53:20.000Z (over 7 years ago)
• Default Branch: master
• Last Pushed: 2024-08-29T17:44:47.000Z (almost 2 years ago)
• Last Synced: 2024-08-29T19:37:57.767Z (almost 2 years ago)
• Topics: anomaly-detection, cyber-threat-intelligence, cybersecurity, ids, lateral-movement, network-monitoring, network-security, nsm, suricata, suricata-rule, threat-hunting, threat-intelligence
• Homepage: http://travisgreen.net
• Size: 429 KB
• Stars: 152
• Watchers: 16
• Forks: 41
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

• awesome-suricata - Hunting rules - Suricata IDS alert rules for network anomaly detection from Travis Green. (Rule Sets)

README

          
# Suricata Hunting Rules (a.k.a. TGI HUNT)

Suricata rules to assist network anomaly detection. These rules are not performance focused and may perform poorly on high throughput networks. Requires Suricata version 7.0.3 or above.

Feedback and suggestions are welcomed [here](https://github.com/travisbgreen/hunting-rules/issues/new).

[email](mailto:travis.github@travisgreen.net)  

[blog](http://travisgreen.net)  

[twitter (retired)](https://twitter.com/travisbgreen/)  

![](https://superawesomevectors.com/wp-content/uploads/2021/03/pair-of-meerkats-free-vector-thumb.jpg)