snort is described as 'Snort® is an open source network intrusion prevention and detection system (IDS/IPS) developed by Sourcefire. Combining the benefits of signature, protocol, and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide' and is a Network Monitor in the network & admin category. There are more than 10 alternatives to snort for a variety of platforms, including Linux, Windows, Mac, BSD and Self-Hosted apps. The best snort alternative is Suricata, which is both free and Open Source. Other great apps like snort are LOKI Free IOC Scanner, Arkime, Maltrail and Yang.
Suricata is a high performance Network IDS, IPS and Network Security Monitoring engine. Open Source and owned by a community run non-profit foundation, the Open Information Security Foundation (OISF). Suricata is developed by the OISF and its supporting vendors.
LOKI is a free and simple IOC - "Incidents of Compromise" scanner - that goes beyond AV and malware scans to detect evidence of hacking.
Moloch augments your current security infrastructure to store and index network traffic in standard PCAP format, providing fast, indexed access. An intuitive and simple web interface is provided for PCAP browsing, searching, and exporting.
Maltrail is a malicious traffic detection system, utilizing publicly available (black)lists containing malicious and/or generally suspicious trails, along with static trails compiled from various AV reports and custom user defined lists, where trail can be anything from domain...
Yang is yet another Nikto GUI; Software for analyzing and securing your servers. Yang establish diagnostics on :
ntopng is the next generation version of the original ntop, a network traffic probe that monitors network usage. ntopng is based on libpcap and it has been written in a portable way in order to virtually run on every Unix platform, MacOSX and on Windows as well.
Network Hotfix Scanner is a free advanced hotfix check utility that scans network computers for missing hotfixes and patches, and helps you download and install them. NetHotfixScanner gives you a quick look at the hotfixes and patches installed or missed on any remote computer...
The goal of cvechecker is to report about possible vulnerabilities on your system, by scanning the installed software and matching the results with the CVE database. Indeed, this is not a bullet-proof method and you will most likely have many false positives (vulnerability is...
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
redborder is an Open Source, Big Data cybersecurity and traffic analysis platform accompanied by a set of active probes managed in an integrated manner. Can be deployed on-premise or used as a cloud service. Managing SNORT events.
France
EU
United States
