Alternatives and similar repositories for zeek-tls-log-alternative:

Users that are interested in zeek-tls-log-alternative are comparing it to the libraries listed below

• corelight / ripple20
  A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.
  ☆33Updated 2 years ago
• COSSAS / dgad
  DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic
  ☆39Updated 5 months ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• vishal1991 / Network-Forensics
  • Packet capture (PCAP) file analysis to analyze traffic sent by malicious IP address.
  ☆12Updated 10 years ago
• CrySyS / bro-step7-plugin
  A proof of concept implementation of the Siemens S7 protocol analyser for the Bro IDS.
  ☆16Updated 7 years ago
• precurse / zeek-httpattacks
  This module detects HTTP requests that are non RFC compliant and used for smuggling
  ☆12Updated last year
• PaloAltoNetworks / pyjarm
  pyJARM is a library for doing JARM fingerprinting using python
  ☆50Updated last week
• tianyulab / ThreatDetectionRules
  威胁检测规则集
  ☆15Updated 5 years ago
• John-Lin / malware
  This is a malware analysis project which expecte to generate snort rule via malicious network traffic
  ☆27Updated last year
• hi-KK / ICS-Protocol-Detect-Use-Python
  Using Python script instead of Nmap NSE script to detect ICS protocols[根据nmap nse脚本来编写工控协议识别的python脚本]
  ☆32Updated 4 years ago
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 4 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 4 months ago
• osV22 / ATTACK-Force-Graph
  Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively
  ☆22Updated 3 years ago
• conexioninversa / WOPR
  Globally distributed honeypots and HoneyNets IOCs and file reversing
  ☆16Updated 8 months ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆43Updated 6 years ago
• threatrack / cti_report_collection
  Repository collecting and automagically processing public threat intelligence reports.
  ☆18Updated 4 years ago
• GiuseppeLaurenza / dAPTaset
  a database that collects data related to APTs from existing public sources through a semi automatic methodology and produces an exhaustiv…
  ☆14Updated 2 years ago
• rbortolameotti / decanter
  ☆16Updated 6 years ago
• fatemabw / kyd
  DHCP Fingerprinting
  ☆28Updated 4 years ago
• nprint / nprint
  nPrint provides a generalizable data representation for network packets that works directly with machine learning techniques
  ☆103Updated 2 years ago
• dtrizna / SysmonRNN
  All necessary code in order to feed Sysmon data into Recurrent Neural Network
  ☆17Updated 4 years ago
• adava / CnCHunter
  This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.
  ☆41Updated 5 months ago
• industrialarmy / ics_exploits
  Exploit funcionales para pruebas de seguridad en entornos industriales
  ☆11Updated 4 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• qut-infosec / 2017QUT_S7comm
  SCADA network attack datasets and process logs
  ☆18Updated 7 years ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆54Updated 4 years ago
• wavestone-cdt / s7-get
  Tools to interact with Siemens PLCs
  ☆12Updated last year
• jvdroit / Suricata-rules
  ☆9Updated 8 years ago
• ByteSecLabs / ja3-ja3s-combo
  High fidelity JA3 & JA3S combinations for known botnets and alike
  ☆11Updated 5 years ago
• IliasKar / 5G_security_malicious_traffic_detection
  ☆21Updated last year