IQTLabs / pcapplot
PCAPPlot provides a quick visual snapshot, or thumbnail, of a network packet capture (PCAP file) from the perspective of a single host/device in four distinct areas: who it is talking to externally, who it is talking to internally, the source ports it is communicating on, and the destination ports it is communicating to.
☆16Updated 3 years ago
Alternatives and similar repositories for pcapplot:
Users that are interested in pcapplot are comparing it to the libraries listed below
- A platform built for easy-to-use automated network traffic analysis☆59Updated 2 years ago
- Workbench: A scalable python framework for security research and development teams.☆91Updated 5 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆47Updated 6 years ago
- Machine learning plugins for network traffic☆125Updated last year
- Potiron - Normalize, Index and Visualize Network Capture☆84Updated 5 years ago
- Detect cryptocurrency mining traffic with Zeek.☆46Updated 3 years ago
- An extensible honeypot framework☆93Updated 2 years ago
- A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.☆51Updated 6 years ago
- Wireshark plugin to display Suricata analysis info☆93Updated 3 years ago
- Generate network maps from packet captures☆30Updated 5 years ago
- Malware/IOC ingestion and processing engine☆104Updated 6 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆121Updated 3 years ago
- ☆85Updated 11 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 4 months ago
- Extract files from network traffic with Zeek.☆100Updated 4 years ago
- A completely automated anomaly detector Zeek network flows files (conn.log).☆75Updated 5 months ago
- A web-based tool to assist the work of the intuitive threat analysts.☆112Updated 5 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated last year
- Ready to run scripts for network analysis☆87Updated this week
- A package manager for Zeek☆44Updated last month
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- The Open Command and Control Forum promotes the global development and adoption of the OpenC2 language and reference material.☆30Updated 7 years ago
- KillerZee: Tools for Attacking and Evaluating Z-Wave Networks☆54Updated 6 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- A RESTful API frontend for Stenographer☆55Updated 2 years ago
- Docker container for MISP☆96Updated 6 years ago
- ☆33Updated 3 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- CARET - A tool for viewing cyber analytic relationships☆53Updated 5 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago