Alternatives and similar repositories for packet-captures

Users that are interested in packet-captures are comparing it to the libraries listed below

• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆192Updated 3 weeks ago
• xnih / satori
  Python rewrite of passive OS fingerprinting tool
  ☆204Updated last month
• stanford-esrg / gps
  GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.
  ☆77Updated 2 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆182Updated 2 months ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆162Updated 10 months ago
• ivre / masscanned
  Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…
  ☆135Updated 2 weeks ago
• benjeems / packetStrider
  A network packet forensics tool for SSH
  ☆254Updated 4 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆92Updated 9 months ago
• thongsia / Public-Pcaps
  ☆68Updated 7 years ago
• H21lab / tsharkVM
  tshark + ELK analytics virtual machine
  ☆68Updated last year
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆84Updated last month
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆61Updated 9 months ago
• cisagov / findcdn
  findCDN is a tool created to help accurately identify what CDN a domain is using.
  ☆121Updated last month
• breakerspace / weaponizing-censors
  censors pose a threat to the entire Internet
  ☆141Updated 4 years ago
• mosajjal / dnsmonster
  Passive DNS Capture and Monitoring Toolkit
  ☆350Updated last week
• Forescout / bgp_boofuzzer
  ☆60Updated 11 months ago
• fullylegit / ja3
  A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm
  ☆60Updated 2 years ago
• ma111e / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆140Updated 11 months ago
• sandflysecurity / sandfly-entropyscan
  Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …
  ☆167Updated last year
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆62Updated 2 months ago
• COSSAS / dgad
  DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic
  ☆45Updated last year
• seungsoo-lee / DELTA
  PROJECT DELTA: SDN SECURITY EVALUATION FRAMEWORK
  ☆89Updated 2 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆172Updated 2 years ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Updated 2 years ago
• leonov-av / vulristics
  Extensible framework for analyzing publicly available information about vulnerabilities
  ☆127Updated last month
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated this week
• Nirusu / how-to-setup-a-honeypot
  How to setup a honeypot with an IDS, ELK and TLS traffic inspection
  ☆164Updated 3 years ago
• satta / awesome-suricata
  A curated list of awesome things related to Suricata
  ☆216Updated 2 months ago
• StamusNetworks / gophercap
  Accurate, modular, scalable PCAP manipulation tool written in Go.
  ☆96Updated last year
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆33Updated 2 weeks ago