activecm / sniffer-template
Template for building a packet sniffer
☆15Updated 5 months ago
Related projects: ⓘ
- Learn about a network from a pcap file or reading from an interface☆26Updated 5 months ago
- Run zeek with zeekctl in docker☆46Updated last week
- ☆34Updated 3 years ago
- Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.☆16Updated 4 years ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆66Updated last year
- ☆43Updated 2 years ago
- Passive OS detection based on SYN packets without Transmitting any Data☆43Updated last year
- The FASTEST way to consume threat intel.☆62Updated last year
- Collection of walkthroughs on various threat hunting techniques☆73Updated 4 years ago
- Zeek Auxiliary Programs☆26Updated 2 weeks ago
- Corelight@Home script☆39Updated 11 months ago
- A collection of tips for using MISP.☆74Updated 5 months ago
- ☆84Updated last week
- Volatility plugins developed and maintained by the community☆21Updated 6 years ago
- A system that creates a bogus web structure to entrap and delay web scanners☆52Updated 3 years ago
- automate your MISP installs☆66Updated 4 years ago
- Incident Response Network Tools☆22Updated 3 years ago
- a port made of honey for blocking people☆11Updated 4 years ago
- Scripts to inject demo data and network traffic into an existing Alienvault/OSSIM installation☆22Updated 7 years ago
- Import CrowdStrike Threat Intelligence into your instance of MISP☆40Updated this week
- Run Velociraptor on Security Onion☆34Updated 2 years ago
- Scapy packet fragment reassembly engines☆34Updated 3 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆32Updated 2 years ago
- ☆51Updated 3 years ago
- ☆29Updated 3 years ago
- Bring Your Own Mitre Att&ck © Matrix !☆13Updated 11 months ago
- My Jupyter Notebooks☆36Updated 5 months ago
- A website and framework for testing NIDS detection☆56Updated 3 years ago
- Scripts to generate an Internet simulation☆34Updated last month
- The Project can be used to integrate QRadar with MISP Threat Sharing Platform☆37Updated 2 years ago