0x4D31 / fattLinks
FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network traffic
☆675Updated last year
Alternatives and similar repositories for fatt
Users that are interested in fatt are comparing it to the libraries listed below
Sorting:
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆541Updated 5 months ago
- Super Next generation Advanced Reactive honEypot☆470Updated last year
- DejaVU - Open Source Deception Framework☆418Updated 2 months ago
- Machinae Security Intelligence Collector☆534Updated last year
- Credentials catching honeypot☆383Updated last year
- Code + documentation for the public GreyNoise API☆314Updated 4 years ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆548Updated 2 years ago
- Praetorian's public release of our Metasploit automation of MITRE ATT&CK™ TTPs☆726Updated 5 years ago
- Information released publicly by NCC Group's Cyber Incident Response Team☆476Updated 3 years ago
- Open Source Threat Intelligence Chat Bot☆322Updated 5 years ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆812Updated 5 years ago
- An information security preparedness tool to do adversarial simulation.☆1,136Updated 6 years ago
- ☆1,087Updated 6 years ago
- Virtual Machine for Adversary Emulation and Threat Hunting☆1,298Updated 9 months ago
- Pattern recognition for hosts, services, and content☆747Updated this week
- Extract and aggregate threat intelligence.☆882Updated last year
- 16,432 Free Yara rules created by☆389Updated 6 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆501Updated last month
- Online hash checker for Virustotal and other services☆835Updated 7 months ago
- Modular file scanning/analysis framework☆621Updated 6 years ago
- Home of the dionaea honeypot☆775Updated last year
- A network packet forensics tool for SSH☆253Updated 4 years ago
- Python-based utility that uses supervised machine learning to detect phishing domains from the Certificate Transparency log network.☆326Updated last year
- FAME Automates Malware Evaluation☆914Updated 2 weeks ago
- A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.☆486Updated 4 years ago
- A low to medium interaction honeypot.☆472Updated last year
- This repo contains logstash of various honeypots☆174Updated 5 years ago
- "Security Incidents In A Box!" A modular, menu-driven, cross-platform tool for building customized, time-delayed, distributed security …☆1,026Updated 5 years ago
- Security event correlation engine for ELK stack☆446Updated last year
- An analytical framework for network traffic and behavioral analytics☆456Updated 2 years ago