DeKrych / Dshell-pluginsLinks
This plugins repository is an unofficial library of decoders for Dshell, the U.S. Army Research Lab's network forensic analysis framework <https://github.com/USArmyResearchLab/Dshell>
☆27Updated 9 years ago
Alternatives and similar repositories for Dshell-plugins
Users that are interested in Dshell-plugins are comparing it to the libraries listed below
Sorting:
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated 2 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 10 months ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- A security tool for detecting suspicious PDF modifications commonly found in BEC☆41Updated 9 years ago
- dnshjmon is a free tool to monitor public DNS records and report hijacks☆91Updated 11 years ago
- Network sinkhole for isolated malware analysis☆40Updated 7 years ago
- Command Line STDOUT Colorer☆30Updated 4 years ago
- Python bindings for Yeti's API☆18Updated last year
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 5 years ago
- dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software☆55Updated 5 years ago
- An ICAP Server with yara scanner for URL and content.☆58Updated 8 months ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- A USB armory based USB sandbox☆21Updated 8 years ago
- KillerZee: Tools for Attacking and Evaluating Z-Wave Networks☆54Updated 6 years ago
- Identify botnet panels with Ensembled Decision Trees☆18Updated 9 years ago
- Email Abuse - A Versatile Software for Email review, analysis and reporting☆21Updated 10 years ago
- Maltego Transform to put entities into MISP events☆28Updated 4 years ago
- Passive DNS V2☆60Updated 11 years ago
- API to use Cymru services☆27Updated 11 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- Extract information from MISP via the API☆15Updated 9 years ago
- VPS infrastructure found in HT dumps☆26Updated 10 years ago
- MantaRay Automated Computer Forensic Triage Tool☆64Updated 6 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- Yara syntax highlighting☆25Updated 3 years ago