Tranalyzer / tranalyzer2Links
Tranalyzer generates extended netflow-like flow statistics from large pcap files or extensive ethernet interface measurements. It is intended to serve as a tool for IT troubleshooting, encrypted traffic mining and forensic analysis.
☆18Updated 6 years ago
Alternatives and similar repositories for tranalyzer2
Users that are interested in tranalyzer2 are comparing it to the libraries listed below
Sorting:
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated last year
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 8 years ago
- Hogzilla is an Intrusion Detection System (IDS) supported by Snort, Apache Spark, HBase and libnDPI, which provides Network Anomaly Detec…☆28Updated 7 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- System for network traffic analysis and anomaly detection.☆91Updated last month
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 6 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Updated 4 months ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 8 years ago
- scan-detection policies for bro☆16Updated 7 months ago
- python wrapper for the nfdump cli application☆21Updated 4 years ago
- A command-line utility program that performs some simple operations on PCAP files (Wireshark/tcpdump traces) very quickly. Allows you to …☆110Updated 2 weeks ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 11 months ago
- Suricata Extreme Performance Tuning guide - Mark II☆118Updated 7 years ago
- ☆24Updated 5 years ago
- Network timing evaluation used to detect beacons, works with argus flow as the source☆20Updated 9 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- You're busted!☆26Updated 5 years ago
- Passive Real-time Asset Detection System☆246Updated last year
- ☆17Updated 5 years ago
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- DGA Domain Detection using Bigram Frequency Analysis☆54Updated 7 years ago
- fiddler output to pcap☆42Updated 11 years ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆78Updated last year
- Suricata Extreme Performance Tuning guide☆211Updated 7 years ago
- Zeek support for Community ID flow hashing.☆36Updated 2 years ago
- Set of scripts to index PCAP files and retrieve packets☆14Updated 9 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 4 years ago