John-Lin / snortunsock
A Python listener to capture Snort event via the UNIX Socket output.
☆15Updated 7 years ago
Alternatives and similar repositories for snortunsock:
Users that are interested in snortunsock are comparing it to the libraries listed below
- A tool to generate Snort rules based on public IP reputation data☆56Updated 11 years ago
- Honeypot that emulates several protocols (incl. SSH, telnet, SMTP, HTTP, SSL and SIP)☆51Updated 8 years ago
- Snort in Docker for Network Functions Virtualization (NFV)☆107Updated 5 years ago
- Amun Honeypot☆61Updated 8 months ago
- DSSL library: network capture and SSL decryption toolkit☆25Updated 5 years ago
- Templates for Kibana/Logstash to use with Suricata IDPS☆80Updated 8 years ago
- calculate flow information from PCAP and extract tcp streams☆69Updated 6 months ago
- A set of ICS IDS rules for use with Suricata.☆49Updated last year
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- Web service for scanning pcaps with snort☆108Updated 6 years ago
- This is a malware analysis project which expecte to generate snort rule via malicious network traffic☆28Updated last year
- Rule sets for Sagan☆102Updated 4 years ago
- dnshjmon is a free tool to monitor public DNS records and report hijacks☆91Updated 11 years ago
- A tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, crede…☆20Updated 6 years ago
- Extract files from network traffic with Zeek.☆100Updated 4 years ago
- Normalizer for honeypot data.☆45Updated 9 years ago
- OpenFlow Honeypot☆23Updated 12 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 3 years ago
- Passive Real-time Asset Detection System☆233Updated 8 months ago
- Quick proof of concept to detect a Kippo SSH honeypot instance externally☆56Updated 10 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- A Network Inspection Tool☆81Updated 7 years ago
- Lightweight DNS telemetry☆54Updated 3 years ago
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 8 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 3 years ago
- Mass deploy and update Suricata IDPS using Ansible IT automation platform☆9Updated 10 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆43Updated 3 years ago
- Evading Snort Intrusion Detection System.☆76Updated 3 years ago
- intel amt honeypot☆18Updated 7 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆44Updated 5 years ago