If you've ever picked up a book on Wireshark or network monitoring, they almost all cover about the same information. They'll show you, "Here's an ARP frame, here's an IP packet, here's a web request..." But what they don't go into is: when you open a Pcap file for the first time, where do you start? What are the things that you look for? And ho…
☆22Dec 5, 2018Updated 7 years ago
Alternatives and similar repositories for Advanced-Wireshark-Network-Forensics
Users that are interested in Advanced-Wireshark-Network-Forensics are comparing it to the libraries listed below
Sorting:
- Labs built in docker to cover NSE lessons☆11Nov 24, 2023Updated 2 years ago
- Converts Nmap XML output to csv file, and other useful functions☆94Jun 8, 2023Updated 2 years ago
- A dataset with CloudTrail events from an attack simulation using Stratus.☆25Jul 12, 2023Updated 2 years ago
- Security scanner tool for Plone CMS.☆19May 14, 2012Updated 13 years ago
- Set up your own CTF with NIZKCTF☆14Oct 20, 2017Updated 8 years ago
- An in-development fork of the Riverloopsec Killerbee Project with additional tools / bugfixes☆11Jan 16, 2018Updated 8 years ago
- Machine Learning Ransomware Detection☆36Apr 8, 2018Updated 7 years ago
- A collection of useful Python hacking scripts for beginners.☆17Apr 20, 2021Updated 4 years ago
- ☆10Apr 10, 2024Updated last year
- Command Spy is a utility for monitoring the command line arguments of new processes on Windows. Made for CCDC.☆11Jul 30, 2023Updated 2 years ago
- ssdeep based clustering tool☆14Jan 17, 2016Updated 10 years ago
- Standardizing Security Titles☆13Dec 31, 2025Updated 2 months ago
- ☆10Sep 11, 2021Updated 4 years ago
- The notebook for my talk - ChatGPT: Your Red Teaming Ally☆54Aug 18, 2023Updated 2 years ago
- Azure Deployment Templates for Mandiant Managed Huning☆12Jun 1, 2023Updated 2 years ago
- 🎥 Brickcom Private Security Cam's Scan and Exploit Improper view DataBase 📺 Watching priv8 (records 📼) in real time from almost countr…☆21Jan 16, 2019Updated 7 years ago
- A tool for patching/injecting code into elf binaries.☆14Sep 27, 2012Updated 13 years ago
- Simple example to show how to capture ZigBee/IEEE 802.15.4 and send it to WIreShark wpan using RFtap under GnuRadio☆16Nov 12, 2019Updated 6 years ago
- This directory contains random scripts from threat hunting or malware research☆11Feb 15, 2018Updated 8 years ago
- Source code for 'Software Exorcism' by Bill Blunden☆13Mar 30, 2017Updated 8 years ago
- Community content for LogRhythm Axon. Includes Dashboards, searches, analytics rules, processing policies and more.☆10Jul 26, 2024Updated last year
- A collection of various awesome lists for hackers, pentesters and security researchers☆15Jul 31, 2019Updated 6 years ago
- Simple spy app for Android☆16Oct 3, 2017Updated 8 years ago
- Active Response plugin. Osquery to execute wazuh/ossec active response plugins. You can write your own plugins, easy to plug☆11Jun 20, 2020Updated 5 years ago
- A mitmproxy addon that allows use of the HTTP Toolkit Android app.☆10Jun 25, 2023Updated 2 years ago
- Some YARA rules i will add from time to time☆12May 31, 2019Updated 6 years ago
- Bulk indicator VirusTotal lookups supporting file hashes, domains and IPs.☆13May 28, 2025Updated 9 months ago
- Dropbear SSH tools with ed25519 and other improvements by pts☆27Aug 16, 2018Updated 7 years ago
- A collection of scripts for HAK5's USB Rubber Ducky☆15Oct 20, 2016Updated 9 years ago
- Hogge Phase EMFI Detector☆15Jun 16, 2021Updated 4 years ago
- Dump macOS 1.8+ password hashes to a hashcat-compatible format☆14May 29, 2022Updated 3 years ago
- All the latest releases and files for x64dbg...☆13Nov 23, 2020Updated 5 years ago
- Automated Real-Time Threat Hunting with ATD, Active Response and Elasticsearch/Kibana☆10Aug 17, 2018Updated 7 years ago
- A collection of curated Java Deserialization Exploits☆11May 22, 2018Updated 7 years ago
- FEBREV venom is a RAT generator tool to create Android RATs through metasploit , signs the RAT apk , and sends the RAT apk to the victim…☆16Aug 13, 2019Updated 6 years ago
- Process hiding library☆19Feb 23, 2020Updated 6 years ago
- MacInjector is a tool that lists macOS applications, checks code-signing vulnerabilities, and injects a dynamic library (dylib) into a vu…☆17Oct 8, 2025Updated 5 months ago
- Converts Sigma detection rules to a Splunk alert configuration.☆12Jul 1, 2021Updated 4 years ago
- Lot of gnuwin32 tools with aliases in PowerShell☆11Aug 20, 2015Updated 10 years ago