Alternatives and similar repositories for tls-mal-detect:

Users that are interested in tls-mal-detect are comparing it to the libraries listed below

• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆76Updated 7 months ago
• shramos / pcap-splitter
  Pcap-splitter allows you to split a pcap file into subsets of pcap files based on sessions, flows, ip addresses, number of bytes, number …
  ☆65Updated 5 years ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• FiveDirections / OpTC-data
  ☆101Updated 4 years ago
• thongsia / Public-Pcaps
  ☆49Updated 6 years ago
• nprint / nprint
  nPrint provides a generalizable data representation for network packets that works directly with machine learning techniques
  ☆108Updated 2 years ago
• hgascon / security-datasets
  A collection of resources for security data
  ☆41Updated 7 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆55Updated 4 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆61Updated 2 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆75Updated 7 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• tklab-tud / ID2T
  Official ID2T repository. ID2T creates labeled IT network datasets that contain user defined synthetic attacks.
  ☆62Updated last year
• tjcruz-dei / ICS_PCAPS
  ICS Cybersecurity PCAP respository
  ☆52Updated 6 years ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆153Updated 2 weeks ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆70Updated 4 years ago
• Hackinfinity / Cyber-Security-Dataset-collections
  Awesome Cyber-Security Data-sets Collection
  ☆19Updated 6 years ago
• yukh1402 / cti-stix-diamond-activity-attack-graph
  STIX 2.1 Visualizer, Attack and Activity Thread Graph for Threat Modeling
  ☆33Updated 3 months ago
• theparanoids / rdfp
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆39Updated last year
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆99Updated 3 years ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated last year
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 4 years ago
• ahm3dhany / IDS-Evasion
  Evading Snort Intrusion Detection System.
  ☆77Updated 3 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• michaelhidalgo / attack-to-elk
  This program exports MITRE ATT&CK framework in ELK dashboard
  ☆78Updated 2 years ago
• nprint / pcapml
  pcapML standardizes network traffic analysis datasets by directly encoding metadata information into raw traffic captures
  ☆25Updated 2 years ago
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆61Updated 7 months ago
• aptnotes / tools
  Tools to interact with APTnotes reporting/index.
  ☆100Updated 4 years ago
• osV22 / ATTACK-Force-Graph
  Generate JSON force-directed/ node graph data from MITRE's ATTACK framework and visualize it interactively
  ☆22Updated 3 years ago
• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆58Updated 5 years ago