HoneProject / Linux-Sensor
Correlate packets to the responsible processes in Linux systems. Diagnose connections by adding process information.
☆103Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for Linux-Sensor
- ssltrace hooks an application's SSL libraries to record keying data of all SSL connections☆93Updated 9 years ago
- PoC to append and extract data at the end of an ELF file☆20Updated 7 years ago
- ☆24Updated 9 years ago
- iknowthis Linux SystemCall Fuzzer☆20Updated 5 years ago
- An Interactive Pcap Editor (based on Scapy)☆23Updated 4 years ago
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 8 years ago
- DNS packet generator☆41Updated 3 months ago
- Convert libvirt-QEMU-save (LQS) files to raw memory files☆37Updated last year
- IPMI stuff from DARPA work☆74Updated last year
- Be able to execute memory snapshots so they can start running where they left off.☆35Updated 9 years ago
- Verification Validation and Visualization of Security Policy Abstractions☆43Updated last year
- Linux kernel module for inspecting/modifying TCP socket state from user space☆86Updated 2 years ago
- A simple, but damn fast sinkhole☆63Updated 2 years ago
- Replay HTTP and HTTPS requests from a PCAP based on TLS Master Secrets.☆94Updated 2 years ago
- Parser for zebra/MRT BGP routes dumps.☆40Updated 8 years ago
- RFC8484 and DoH/JSON resolver☆39Updated last year
- This demonstrates the hijacking of the "write" system call and how to set the System Call table to read/write mode via modifying the corr…☆19Updated 10 years ago
- Engine for capturing, parsing and replaying DNS☆57Updated 2 weeks ago
- Ipsumdump and other programs for command-line network trace manipulation.☆37Updated 9 months ago
- Ccollection of Linux loadable kernel modules aimed to logs any user action☆25Updated 5 years ago
- Lightweight DNS telemetry☆54Updated 2 years ago
- Passive DHCP fingerprinting implementation☆49Updated 8 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- Stealth's 64bit injectso port☆74Updated 14 years ago
- Set of scripts to index PCAP files and retrieve packets☆14Updated 9 years ago
- r2yara - Module for Yara using radare2 information☆34Updated last year
- Passive DHCP analyzer with OS fingerprinting on the LAN through DHCP☆13Updated 7 years ago
- intel amt honeypot☆18Updated 7 years ago
- A library for efficient interception of established TCP connections☆19Updated 9 years ago
- Fork/mirror of Darcs repo for PyFlag (Forensic and Log Analysis GUI)☆36Updated 14 years ago