Alternatives and similar repositories for passive-ssh

Users that are interested in passive-ssh are comparing it to the libraries listed below

• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• mnemonic-no / SNIcat
  SNIcat
  ☆126Updated 3 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• Neo23x0 / Cyber-Search-Shortcuts
  Browser Shortcuts for Cyber Security Related Online Services
  ☆79Updated 4 years ago
• veeral-patel / incidents
  Please use https://github.com/veeral-patel/true-positive instead
  ☆67Updated 2 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆130Updated 3 years ago
• triw0lf / urlscan_scripts
  A bunch of scripts I use to work with urlscan.io
  ☆34Updated 5 years ago
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 3 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 3 years ago
• DevoInc / pCraft
  pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.
  ☆89Updated last year
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 7 years ago
• TobySalusky / cont3xt
  Cont3xt intends to centralize and simplify a structured approach to gathering contextual intelligence in support of technical investigati…
  ☆37Updated last year
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆159Updated 5 years ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆140Updated 3 months ago
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆38Updated 3 years ago
• arpitn30 / nipper-ng
  Automatically exported from code.google.com/p/nipper-ng
  ☆70Updated 2 years ago
• pry0cc / crobat-client
  A Go client for crobat
  ☆24Updated 5 years ago
• fireeye / CVE-2021-44228
  OpenIOC rules to facilitate hunting for indicators of compromise
  ☆37Updated 3 years ago
• nccgroup / SSHession
  The SSH Multiplex Backdoor Tool
  ☆64Updated 5 years ago
• TKCERT / winnti-nmap-script
  Nmap Script to scan for Winnti infections
  ☆70Updated 6 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• adobe / libLOL
  ☆48Updated 3 months ago
• covert-labs / mx-intel
  Jupyter Notebooks and code used for DNS MX mining to identify top email security providers
  ☆54Updated last year
• michoo / pci
  Packet communication investigator
  ☆92Updated 2 years ago
• TheHairyJ / Scout
  Scout - a Contactless Active Reconnaissance Tool
  ☆52Updated 2 years ago
• NettleSec / TriOp
  Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries
  ☆49Updated 2 years ago
• himazawa / bento
  Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
  ☆77Updated 4 years ago
• cert-lv / graphoscope
  Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph
  ☆38Updated 4 months ago