Alternatives and similar repositories for sniffer-template:

Users that are interested in sniffer-template are comparing it to the libraries listed below

• activecm / pcap-stats
  Learn about a network from a pcap file or reading from an interface
  ☆28Updated 11 months ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆70Updated last year
• activecm / devprof
  Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.
  ☆16Updated 5 years ago
• adhdproject / honeyports
  a port made of honey for blocking people
  ☆12Updated 4 years ago
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆46Updated 2 years ago
• Security-Onion-Solutions / securityonion-soc
  ☆52Updated this week
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆61Updated 2 years ago
• SHolzhauer / elastic-tip
  Elastic TIP is a python tool which automates the process of aggregating Threat Intelligence and ingesting the intelligence into a common …
  ☆27Updated 8 months ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆68Updated last year
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆35Updated 2 months ago
• MITRECND / mitrecnd.github.io
  MITRE Shield website
  ☆19Updated 3 years ago
• mayhemiclabs / weblabyrinth
  A system that creates a bogus web structure to entrap and delay web scanners
  ☆59Updated 3 years ago
• weslambert / securityonion-misp
  ☆34Updated 4 years ago
• adhdproject / gcat
  A PoC backdoor that uses Gmail as a C&C server
  ☆14Updated 4 years ago
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• zeek / zeek-aux
  Zeek Auxiliary Programs
  ☆28Updated last week
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 3 years ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 4 years ago
• correlatedsecurity / SPEED-SIEM-Use-Case-Framework
  Repository for SPEED SIEM Use Case Framework
  ☆53Updated 4 years ago
• corelight / threat-hunting-guide
  ☆51Updated 3 years ago
• StamusNetworks / suricata-4-analysts
  The Security Analyst’s Guide to Suricata
  ☆54Updated 9 months ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆51Updated 2 years ago
• Security-Onion-Solutions / securityonion-docs
  ☆88Updated this week
• clausing / scripts
  ☆63Updated last month
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆51Updated 6 months ago
• da667 / AutoMISP
  automate your MISP installs
  ☆67Updated 4 years ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆55Updated 3 years ago
• weslambert / securityonion-velociraptor
  Run Velociraptor on Security Onion
  ☆37Updated 2 years ago
• cerebrate-project / cerebrate
  Cerebrate is an open-source platform meant to act as a trusted contact information provider and interconnection orchestrator for other se…
  ☆86Updated last week
• MarkBaggett / reassembler
  Scapy packet fragment reassembly engines
  ☆33Updated 4 years ago