abzcoding / aptdetectorLinks
Advanced Persistent Threat Detection Using Network Analysis
☆23Updated 6 years ago
Alternatives and similar repositories for aptdetector
Users that are interested in aptdetector are comparing it to the libraries listed below
Sorting:
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆103Updated 4 months ago
- A map displaying threat actors from the misp-galaxy☆33Updated 2 years ago
- The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research☆12Updated 8 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆113Updated 6 years ago
- The Fastest way to consume Threat Intel☆26Updated 3 years ago
- ☆35Updated 4 years ago
- HoneyDB Python Module☆14Updated last year
- Scripts to detect Fast-Flux and DGA using DNS query responses☆44Updated 8 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆72Updated 6 years ago
- Malware/IOC ingestion and processing engine☆107Updated 7 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.☆69Updated last month
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆44Updated 4 years ago
- ☆20Updated 5 years ago
- Home to the ActorTrackr source code☆29Updated 8 years ago
- A Heroku-based web honeypot that can be used to create and monitor fake HTTP endpoints (i.e. honeytokens).☆65Updated 6 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 5 years ago
- ☆46Updated 8 years ago
- Utility for parsing Bro log files into CSV or JSON format☆42Updated 2 years ago
- Combining OSINT sources in Elastic Stack☆80Updated 5 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆38Updated 3 years ago
- This tool maps a file's behavior on MITRE ATT&CK matrix.☆59Updated 5 years ago
- Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.☆82Updated 8 months ago
- A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.☆54Updated 7 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- Spam trap management☆23Updated last year
- This repository is a curated list of pro bono incident response entities.☆21Updated 2 years ago
- DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…☆80Updated last year
- Semi-Intelligent HoneyPot Network - Semi-Intelligent Reactive Environment Network☆14Updated 7 years ago
- Deploy MISP Project software with Vagrant.☆45Updated 5 years ago