StopDDoS / packet-captures

Related projects: ⓘ

• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆152Updated 3 weeks ago
• thongsia / Public-Pcaps
  ☆39Updated 5 years ago
• openargus / argus
  Argus Sensor
  ☆47Updated this week
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆149Updated 11 months ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆93Updated 3 years ago
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆144Updated 2 months ago
• bonjourmalware / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆138Updated 3 years ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆340Updated this week
• aelth / ddospot
  NTP, DNS, SSDP, Chargen and generic UDP-based amplification DDoS honeypot
  ☆44Updated 3 years ago
• cisagov / findcdn
  findCDN is a tool created to help accurately identify what CDN a domain is using.
  ☆95Updated last month
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆142Updated 6 months ago
• aau-network-security / riotpot
  IoT and Operational Technology Honeypot
  ☆104Updated 11 months ago
• mosajjal / dnsmonster
  Passive DNS Capture and Monitoring Toolkit
  ☆314Updated last month
• Forescout / bgp_boofuzzer
  ☆52Updated 7 months ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆49Updated 3 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆85Updated 4 months ago
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆98Updated this week
• seanlinmt / suricata
  OpenWRT Suricata package
  ☆43Updated 6 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆74Updated this week
• hpthreatresearch / subcrawl
  SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…
  ☆143Updated 11 months ago
• pan-unit42 / Wireshark-quizzes
  Packet captures of malicious traffic for analysis using Wireshark
  ☆53Updated last year
• 1computerguy / tls-mal-detect
  Using machine learning to detect malware in encrypted TLS traffic metadata
  ☆17Updated 3 years ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆60Updated 4 months ago
• redcanaryco / redcanary-ebpf-sensor
  Red Canary's eBPF Sensor
  ☆97Updated 2 months ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆61Updated this week
• breakerspace / weaponizing-censors
  censors pose a threat to the entire Internet
  ☆131Updated 3 years ago
• cado-security / rip_raw
  Rip Raw is a small tool to analyse the memory of compromised Linux systems.
  ☆131Updated 2 years ago
• sbousseaden / PCAP-ATTACK
  PCAP Samples for Different Post Exploitation Techniques
  ☆339Updated 3 years ago
• ivre / masscanned
  Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…
  ☆101Updated last week
• Cisco-Talos / osquery_queries
  Cisco Orbital - Osquery queries by Talos
  ☆122Updated 3 weeks ago