DeKrych / Dshell-pluginsLinks
This plugins repository is an unofficial library of decoders for Dshell, the U.S. Army Research Lab's network forensic analysis framework <https://github.com/USArmyResearchLab/Dshell>
☆27Updated 9 years ago
Alternatives and similar repositories for Dshell-plugins
Users that are interested in Dshell-plugins are comparing it to the libraries listed below
Sorting:
- Workbench: A scalable python framework for security research and development teams.☆92Updated 6 years ago
- Metadata Inspection Database Alerting System☆42Updated 12 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆39Updated last year
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆98Updated 11 years ago
- Lite version of PDF X-RAY that uses no backend☆38Updated 14 years ago
- dnshjmon is a free tool to monitor public DNS records and report hijacks☆91Updated 12 years ago
- API to use Cymru services☆27Updated 12 years ago
- Passive Network Audit Framework☆32Updated 7 years ago
- REST API based malware repository (abandoned)☆107Updated 10 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆41Updated 5 years ago
- Vagrant configuration to setup a Thug honeyclient VM☆20Updated 10 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 9 years ago
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Updated 9 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 5 years ago
- KillerZee: Tools for Attacking and Evaluating Z-Wave Networks☆55Updated 6 years ago
- Email Abuse - A Versatile Software for Email review, analysis and reporting☆21Updated 10 years ago
- Yara Scanner For IMAP Feeds and saved Streams☆28Updated 6 years ago
- ☆19Updated 7 years ago
- onigiri - remote malware triage script☆24Updated 10 years ago
- Identify botnet panels with Ensembled Decision Trees☆18Updated 9 years ago
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Network sinkhole for isolated malware analysis☆40Updated 7 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 7 years ago
- Parses Java Cache IDX files☆40Updated 7 years ago
- Python libary to normalize Yara signatures☆19Updated 5 years ago
- A Rekall interactive document for a Memory Analysis workshop/course.☆43Updated 8 years ago