UHH-ISS / honeygrove

Related projects ⓘ

Alternatives and complementary repositories for honeygrove

• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆28Updated 4 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆44Updated 10 months ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 10 months ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated last year
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated 11 months ago
• Te-k / commands-for-sec
  Useful commands for infosec
  ☆28Updated last year
• ANSSI-FR / route_leaks
  BGP Route Leaks Detection
  ☆70Updated 5 years ago
• anvilsecure / dawgmon
  dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software
  ☆56Updated 5 years ago
• adulau / pdns-qof-server
  Passive DNS server interface compliant to "Common Output Format"
  ☆10Updated 8 years ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆11Updated last year
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 4 months ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆34Updated last year
• mozilla / zept
  INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning
  ☆26Updated 5 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆69Updated 4 months ago
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆29Updated 2 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 6 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 3 years ago
• ForensicITGuy / libpreloadvaccine
  Whitelisting LD_PRELOAD libraries using LD_AUDIT
  ☆61Updated 3 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆83Updated 5 years ago
• cert-ee / s4a
  S4A main repository. SaltStack states, install script and build scripts
  ☆26Updated 3 weeks ago
• cea-sec / hairgap
  A set of tools to transfer data over a unidirectional network link (typically a network diode).
  ☆53Updated 7 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆76Updated 3 weeks ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆30Updated last year
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆76Updated last year
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆31Updated last month
• corelight / ripple20
  A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.
  ☆33Updated 2 years ago
• mghogale / linux-antivirus
  Antivirus for Linux operating system
  ☆10Updated 7 years ago
• OISF / suricata-intel-index
  Suricata rule and intel index
  ☆29Updated last month