activecm / smudgeLinks
Passive OS detection based on SYN packets without Transmitting any Data
☆46Updated 2 years ago
Alternatives and similar repositories for smudge
Users that are interested in smudge are comparing it to the libraries listed below
Sorting:
- CSIRT Jump Bag☆26Updated last year
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆70Updated 2 years ago
- Corelight@Home script☆41Updated last year
- Learn about a network from a pcap file or reading from an interface☆29Updated last year
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- Defensive Origins Training Schedule☆38Updated last year
- Extracts fields from zeek logs, compatible with zeek-cut☆22Updated 10 months ago
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- Easily create index of your SANS books☆16Updated 2 years ago
- ☆29Updated 4 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆43Updated last year
- Defence Against the Dark Arts☆34Updated 5 years ago
- A few quick recipes for those that do not have much time during the day☆22Updated 7 months ago
- Acheron is a RESTful vulnerability assessment and management framework built around search and dedicated to terminal extensibility.☆32Updated 2 years ago
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆33Updated last year
- ESXi Cyber Security Incident Response Script☆22Updated 9 months ago
- A collection of tips for using MISP.☆74Updated 5 months ago
- ☆41Updated 2 years ago
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆36Updated last year
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated this week
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- Tool used to perform threat intelligence against packet data☆35Updated 4 months ago
- A tool to modify timestamps in a packet capture to a user selected date☆31Updated 3 years ago
- Sharing Threat Hunting runbooks☆25Updated 5 years ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- Accelerating the collection, processing, analysis and outputting of digital forensic artefacts.☆31Updated 4 months ago
- ☆35Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- DShield Sensor Log Collection with ELK☆28Updated 2 weeks ago
- Scapy packet fragment reassembly engines☆33Updated 4 years ago