Alternatives and similar repositories for passive-ssh

Users that are interested in passive-ssh are comparing it to the libraries listed below

• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• mnemonic-no / SNIcat
  SNIcat
  ☆126Updated 3 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 3 years ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆37Updated 3 years ago
• 3CORESec / Trapdoor
  Serverless honeytoken 🕵🏻‍♂️
  ☆79Updated 2 years ago
• singe / yellow
  A simple binary wrapper for DNS canarytokens.
  ☆25Updated 2 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 3 years ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 4 months ago
• triw0lf / urlscan_scripts
  A bunch of scripts I use to work with urlscan.io
  ☆34Updated 5 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• jgamblin / CVEHeatMap
  A CVE Heatmap Using CalPlot
  ☆97Updated 4 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆67Updated 2 years ago
• pry0cc / crobat-client
  A Go client for crobat
  ☆24Updated 5 years ago
• himazawa / bento
  Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
  ☆77Updated 4 years ago
• DevoInc / pCraft
  pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.
  ☆90Updated last year
• arpitn30 / nipper-ng
  Automatically exported from code.google.com/p/nipper-ng
  ☆70Updated 2 years ago
• adobe / libLOL
  ☆48Updated 4 months ago
• covert-labs / mx-intel
  Jupyter Notebooks and code used for DNS MX mining to identify top email security providers
  ☆54Updated last year
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• cert-lv / graphoscope
  Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph
  ☆38Updated 6 months ago
• soaringswine / lazyrecon_docker
  Containerized version of my fork of Nahamsec's Lazyrecon.
  ☆49Updated 2 years ago
• AbGuthrie / goquery
  Provide a shell like interface by utilizing osquery's distributed API
  ☆81Updated 5 years ago
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆160Updated 5 years ago
• vp777 / procrustes
  A bash script that automates the exfiltration of data over dns in case we have blind command execution on a server with egress filtering
  ☆210Updated 4 years ago
• secdevopsai / Threat-Intel-Slack-Bot
  Interactive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack
  ☆27Updated 5 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• gquere / ngp2
  ncurses-grep: interactively navigate grep-like results
  ☆32Updated last year
• TheHairyJ / Scout
  Scout - a Contactless Active Reconnaissance Tool
  ☆53Updated 2 years ago
• tenzir / threatbus
  🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
  ☆263Updated 2 years ago