IQTLabs / packet_cafeLinks
A platform built for easy-to-use automated network traffic analysis
☆59Updated 2 years ago
Alternatives and similar repositories for packet_cafe
Users that are interested in packet_cafe are comparing it to the libraries listed below
Sorting:
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- Generate network maps from packet captures☆30Updated 5 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- A lightweight tool to score network traffic and flag anomalies☆123Updated last year
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆263Updated 2 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆106Updated last year
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.☆109Updated 7 years ago
- server for indexing and querying passive DNS observations☆46Updated 3 weeks ago
- A Passive SSH back-end and scanner.☆103Updated last month
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Structured Threat Intelligence Graph☆95Updated 4 months ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 10 months ago
- A completely automated anomaly detector Zeek network flows files (conn.log).☆83Updated this week
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆74Updated last year
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆121Updated 4 years ago
- D4 core software (server and sample sensor client)☆42Updated last year
- URL Abuse - A Versatile Software for URL review, analysis and black-list reporting☆145Updated 2 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆140Updated last week
- Ready to run scripts for network analysis☆88Updated 4 months ago
- IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date☆94Updated 2 months ago
- Tools to assist in forensicating docker☆84Updated 5 months ago
- 1-Click push forensics evidence to the cloud☆141Updated last year
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆175Updated 4 years ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆55Updated 3 months ago
- ansible role to setup MISP, Malware Information Sharing Platform & Threat Sharing☆54Updated 3 weeks ago
- Expandable Defensive Cyber Operations Platform☆43Updated 2 years ago
- A Spicy protocol analyzer for WireGuard☆29Updated 4 years ago