Masood-M / yalih
YALIH (Yet Another Low Interaction Honeyclient) is a low Interaction Client honeypot designed to detect malicious websites through signature, anomaly and pattern matching techniques
☆68Updated 5 years ago
Alternatives and similar repositories for yalih:
Users that are interested in yalih are comparing it to the libraries listed below
- Bro scripts to be shared with the community☆109Updated 12 years ago
- ☆75Updated 3 years ago
- A framework for receiving and redistributing abuse feeds☆123Updated 5 years ago
- ☆71Updated 3 years ago
- a Malware/Threat Analyst Desktop☆89Updated 9 years ago
- (Unofficial) Python API for https://malwr.com/☆62Updated 8 years ago
- Various Bro scripts☆96Updated 8 years ago
- Passive DNS V2☆61Updated 11 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆79Updated 9 years ago
- Python tools for IOC (Indicator of Compromise) handling☆96Updated 3 years ago
- Cyber Intel Management☆48Updated 7 years ago
- Credential Phish Analysis and Automation☆96Updated 6 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 8 years ago
- An ICAP Server with yara scanner for URL and content.☆59Updated 4 months ago
- Python API for URL Query☆35Updated 8 years ago
- A Network Inspection Tool☆81Updated 7 years ago
- Imports Alienvault OTX pulses to a MISP instance☆52Updated 3 years ago
- Malware/IOC ingestion and processing engine☆104Updated 6 years ago
- Gather and compile open source threat intelligence feeds.☆39Updated 3 years ago
- Script for generating Bro intel files from pdf or html reports☆77Updated 9 years ago
- ☆85Updated 11 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- Spam Honeypot with Intelligent Virtual Analyzer☆137Updated last month
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Bro-IDS scripts☆50Updated 8 years ago
- Alienvault Labs Projects Random Stuff☆79Updated 11 years ago
- DNSDB query scripts☆75Updated 5 years ago
- CuckooMX is a project to automate analysis of files transmitted over SMTP (using the Cuckoo sandbox)☆41Updated 12 years ago
- A set of templates for documenting threat intelligence☆74Updated 12 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆182Updated 2 years ago