Alternatives and similar repositories for passive-ssh

Users that are interested in passive-ssh are comparing it to the libraries listed below

• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆159Updated 5 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 3 months ago
• mnemonic-no / SNIcat
  SNIcat
  ☆126Updated 3 years ago
• michoo / pci
  Packet communication investigator
  ☆92Updated 2 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆261Updated 2 years ago
• singe / yellow
  A simple binary wrapper for DNS canarytokens.
  ☆25Updated 2 years ago
• arpitn30 / nipper-ng
  Automatically exported from code.google.com/p/nipper-ng
  ☆70Updated 2 years ago
• triw0lf / urlscan_scripts
  A bunch of scripts I use to work with urlscan.io
  ☆34Updated 5 years ago
• f5devcentral / cve-2020-5902-ioc-bigip-checker
  ☆17Updated 4 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆72Updated 10 months ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• secdevopsai / Threat-Intel-Slack-Bot
  Interactive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack
  ☆27Updated 5 years ago
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 7 years ago
• adobe / libLOL
  ☆48Updated 4 months ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆67Updated 2 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• 3CORESec / Trapdoor
  Serverless honeytoken 🕵🏻‍♂️
  ☆79Updated 2 years ago
• paralax / ObsidianSailboat
  Nmap and NSE command line wrapper in the style of Metasploit
  ☆42Updated 2 years ago
• DevoInc / pCraft
  pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.
  ☆90Updated last year
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆130Updated 3 years ago
• Neo23x0 / panopticon
  A YARA Rule Performance Measurement Tool
  ☆59Updated last year
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆37Updated 3 years ago
• cocaman / yara-scan-service
  Repository for scripts and tips for "Yara Scan Service"
  ☆20Updated 2 years ago
• bambenek / research
  ☆100Updated 4 years ago
• joswr1ght / bitfit
  Recursively validate a starting directory of file contents to identify changes, corrupt data
  ☆37Updated 4 years ago
• COVID-19-CTI-LEAGUE / PUBLIC_RELEASE
  Files vetted, and approved for public release
  ☆53Updated last year