abzcoding / aptdetectorLinks
Advanced Persistent Threat Detection Using Network Analysis
☆22Updated 6 years ago
Alternatives and similar repositories for aptdetector
Users that are interested in aptdetector are comparing it to the libraries listed below
Sorting:
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆102Updated 3 weeks ago
- A map displaying threat actors from the misp-galaxy☆33Updated 2 years ago
- Malware/IOC ingestion and processing engine☆106Updated 6 years ago
- Scripts to detect Fast-Flux and DGA using DNS query responses☆43Updated 8 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆113Updated 6 years ago
- The Fastest way to consume Threat Intel☆26Updated 3 years ago
- Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.☆68Updated last year
- ☆35Updated 4 years ago
- The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research☆12Updated 8 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆43Updated 3 years ago
- HoneyDB Python Module☆13Updated last year
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆72Updated 6 years ago
- ☆45Updated 8 years ago
- Home to the ActorTrackr source code☆29Updated 7 years ago
- CARET - A tool for viewing cyber analytic relationships☆55Updated 5 years ago
- A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).☆64Updated 6 years ago
- Proof of concept implementation of a cyber threat intelligence and incident handling platform☆11Updated 2 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- Hunting IOCs all day every day...☆86Updated last year
- Graph Representation of MITRE ATT&CK's CTI data☆49Updated 5 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…☆41Updated 6 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.☆52Updated 6 years ago
- Providing timelines based on OSINT Reports☆32Updated 2 years ago
- Tools to interact with APTnotes reporting/index.☆103Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- ☆18Updated 7 years ago
- Semi-Intelligent HoneyPot Network - Semi-Intelligent Reactive Environment Network☆13Updated 7 years ago
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆102Updated 2 years ago