activecm / smudgeLinks
Passive OS detection based on SYN packets without Transmitting any Data
☆46Updated 2 years ago
Alternatives and similar repositories for smudge
Users that are interested in smudge are comparing it to the libraries listed below
Sorting:
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆70Updated 2 years ago
- ☆35Updated 4 years ago
- Learn about a network from a pcap file or reading from an interface☆29Updated last year
- SkillAegis is a platform to design, run, and monitor exercise scenarios, enhancing skills in applications like MISP and training users in…☆30Updated 2 months ago
- CSIRT Jump Bag☆26Updated last year
- Extracts fields from zeek logs, compatible with zeek-cut☆23Updated 11 months ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆44Updated last year
- A new Cyber Threat Intelligence Capability Maturity Model (CTI-CMM) to empower your team and create lasting value. Inspired by Industry N…☆34Updated 2 months ago
- A collection of tips for using MISP.☆74Updated 6 months ago
- Easily create index of your SANS books☆16Updated 2 years ago
- Run Velociraptor on Security Onion☆38Updated 2 years ago
- Recon Hunt Queries☆77Updated 4 years ago
- CyberChef - Detection Engineering, TI, DFIR, Malware Analysis Edition☆63Updated 2 years ago
- This script provides a Python library with methods to authenticate to various sources of threat intelligence and query IPs for the latest…☆18Updated 4 months ago
- Sigma detection rules for hunting with the threathunting-keywords project☆55Updated 3 months ago
- Bloodhound Portable for Windows☆51Updated 2 years ago
- ☆41Updated 2 years ago
- ☆11Updated 4 years ago
- simple webapp for converting sigma rules into siem queries using the pySigma library☆49Updated last year
- Workflows for Shuffle☆23Updated 2 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Get started using Synapse Open-Source to start a Cortex and perform analysis within your area of expertise.☆44Updated 3 years ago
- Provides detection capabilities and log conversion to evtx or syslog capabilities☆53Updated 2 years ago
- Defence Against the Dark Arts☆34Updated 5 years ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- Track progress and keep notes while working through likethecoins' CTI Self Study Plan☆28Updated 2 years ago
- ☆64Updated 4 months ago
- Network security visualization tool, showcasing live traffic between internal and external hosts in a real-time visualization.☆26Updated 2 years ago
- Simple parser to get useful information from AWS S3 logs☆26Updated 3 years ago