IQTLabs / pcapplotLinks
PCAPPlot provides a quick visual snapshot, or thumbnail, of a network packet capture (PCAP file) from the perspective of a single host/device in four distinct areas: who it is talking to externally, who it is talking to internally, the source ports it is communicating on, and the destination ports it is communicating to.
☆17Updated 4 years ago
Alternatives and similar repositories for pcapplot
Users that are interested in pcapplot are comparing it to the libraries listed below
Sorting:
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Updated 5 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Updated 6 years ago
- Generate network maps from packet captures☆30Updated 6 years ago
- The Official Github Repository of Daemonlogger☆22Updated 4 years ago
- A platform built for easy-to-use automated network traffic analysis☆60Updated 2 years ago
- Sandia Cyber Omni Tracker (SCOT)☆252Updated last year
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆141Updated 2 years ago
- A RESTful API frontend for Stenographer☆54Updated 3 years ago
- Malware/IOC ingestion and processing engine☆108Updated 7 years ago
- URL Abuse - A Versatile Software for URL review, analysis and black-list reporting☆148Updated 3 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 7 years ago
- Wireshark plugin to display Suricata analysis info☆95Updated 4 years ago
- A tool designed for consistent and safe capture of off network web resources.☆39Updated 8 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated 2 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆114Updated 6 years ago
- Structured Threat Intelligence Graph☆97Updated last month
- Ready to run scripts for network analysis☆89Updated 8 months ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆143Updated this week
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆98Updated 9 years ago
- stoQ Public Plugins☆71Updated 2 years ago
- The Open Command and Control Forum promotes the global development and adoption of the OpenC2 language and reference material.☆30Updated 8 years ago
- Public Profile Repository for Rekall Memory Forensic.☆101Updated 5 years ago
- Detect cryptocurrency mining traffic with Zeek.☆46Updated 4 years ago
- WALKOFF-enabled applications. #nsacyber☆143Updated 6 years ago
- A tool to extract structured cyber information from incident reports.☆82Updated 7 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 6 years ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Updated 3 years ago
- An open source framework for enterprise level automated analysis.☆396Updated 3 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 4 years ago
- Honeynet Project generic authenticated datafeed protocol☆218Updated 2 years ago