Alternatives and similar repositories for passive-ssh

Users that are interested in passive-ssh are comparing it to the libraries listed below

• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆95Updated 4 years ago
• assafmo / xioc
  Extract indicators of compromise from text, including "escaped" ones.
  ☆159Updated 5 years ago
• swisscom / detections
  Threat intelligence and threat detection indicators (IOC, IOA)
  ☆52Updated 4 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆130Updated 3 years ago
• mnemonic-no / SNIcat
  SNIcat
  ☆126Updated 3 years ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆141Updated 3 months ago
• gen0cide / laforge
  Competition Infrastructure Management
  ☆87Updated 3 years ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• himazawa / bento
  Bento Toolkit is a minimal fedora-based container for penetration tests and CTF with the sweet addition of GUI applications.
  ☆77Updated 4 years ago
• adobe / libLOL
  ☆48Updated 4 months ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• triw0lf / urlscan_scripts
  A bunch of scripts I use to work with urlscan.io
  ☆34Updated 5 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• cert-lv / graphoscope
  Graphoscope is a solution to access multiple independent data sources from a common UI and show data relations as a graph
  ☆38Updated 5 months ago
• arpitn30 / nipper-ng
  Automatically exported from code.google.com/p/nipper-ng
  ☆70Updated 2 years ago
• secdevopsai / Threat-Intel-Slack-Bot
  Interactive Threat Intelligence Bot that leverages serverless framework, AWS/GCP, and Slack
  ☆27Updated 5 years ago
• telekom-security / acquire-aws-ec2
  A python script to acquire multiple aws ec2 instances in a forensically sound-ish way
  ☆38Updated 3 years ago
• TKCERT / winnti-nmap-script
  Nmap Script to scan for Winnti infections
  ☆70Updated 7 years ago
• Sy14r / Cryptbreaker
  A cloud-backed password cracking and assessment tool - Sponsored by Open Security
  ☆69Updated 2 years ago
• dsnezhkov / racketeer
  ☆69Updated 3 years ago
• Homas / ioc2rpz
  ioc2rpz is a place where threat intelligence meets DNS.
  ☆109Updated 4 months ago
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 7 years ago
• singe / yellow
  A simple binary wrapper for DNS canarytokens.
  ☆25Updated 2 years ago
• covert-labs / mx-intel
  Jupyter Notebooks and code used for DNS MX mining to identify top email security providers
  ☆54Updated last year
• PaperMtn / github-watchman
  Monitoring GitHub for sensitive data shared publicly
  ☆66Updated 3 years ago
• Neo23x0 / ti-falsepositives
  A collection of typical false positive indicators
  ☆55Updated 4 years ago
• mandiant / ioc-scanner-CVE-2019-19781
  Indicator of Compromise Scanner for CVE-2019-19781
  ☆94Updated 5 years ago
• NettleSec / TriOp
  Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries
  ☆49Updated 2 years ago
• Neo23x0 / Cyber-Search-Shortcuts
  Browser Shortcuts for Cyber Security Related Online Services
  ☆78Updated 4 years ago