activecm / sniffer-template
Template for building a packet sniffer
☆14Updated last year
Alternatives and similar repositories for sniffer-template:
Users that are interested in sniffer-template are comparing it to the libraries listed below
- Learn about a network from a pcap file or reading from an interface☆28Updated 11 months ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆70Updated last year
- Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.☆16Updated 5 years ago
- a port made of honey for blocking people☆12Updated 4 years ago
- Passive OS detection based on SYN packets without Transmitting any Data☆46Updated 2 years ago
- ☆52Updated this week
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆61Updated 2 years ago
- Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …☆27Updated 8 months ago
- The FASTEST way to consume threat intel.☆68Updated last year
- Tool used to perform threat intelligence against packet data☆35Updated 2 months ago
- MITRE Shield website☆19Updated 3 years ago
- A system that creates a bogus web structure to entrap and delay web scanners☆59Updated 3 years ago
- ☆34Updated 4 years ago
- A PoC backdoor that uses Gmail as a C&C server☆14Updated 4 years ago
- Collection of walkthroughs on various threat hunting techniques☆75Updated 4 years ago
- Zeek Auxiliary Programs☆28Updated last week
- Incident Response Network Tools☆24Updated 3 years ago
- Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…☆18Updated 4 years ago
- Repository for SPEED SIEM Use Case Framework☆53Updated 4 years ago
- ☆51Updated 3 years ago
- The Security Analyst’s Guide to Suricata☆54Updated 9 months ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆51Updated 2 years ago
- ☆88Updated this week
- ☆63Updated last month
- Run zeek with zeekctl in docker☆51Updated 6 months ago
- automate your MISP installs☆67Updated 4 years ago
- An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.☆55Updated 3 years ago
- Run Velociraptor on Security Onion☆37Updated 2 years ago
- Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…☆86Updated last week
- Scapy packet fragment reassembly engines☆33Updated 4 years ago