activecm / sniffer-template

Related projects ⓘ

Alternatives and complementary repositories for sniffer-template

• activecm / pcap-stats
  Learn about a network from a pcap file or reading from an interface
  ☆27Updated 7 months ago
• activecm / devprof
  Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.
  ☆16Updated 4 years ago
• zeek / zeek-aux
  Zeek Auxiliary Programs
  ☆26Updated 2 months ago
• SecurityNik / pktIntel
  Tool used to perform threat intelligence against packet data
  ☆35Updated 7 months ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆50Updated 2 months ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆67Updated last year
• weslambert / securityonion-misp
  ☆34Updated 3 years ago
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆45Updated last year
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆64Updated last year
• corelight / threat-hunting-guide
  ☆46Updated 2 years ago
• mayhemiclabs / weblabyrinth
  A system that creates a bogus web structure to entrap and delay web scanners
  ☆52Updated 3 years ago
• MISP / misp-cloud
  misp-cloud - Cloud-ready images of MISP
  ☆72Updated 2 years ago
• Security-Onion-Solutions / securityonion-soc
  ☆47Updated this week
• activecm / threat-hunting-labs
  Collection of walkthroughs on various threat hunting techniques
  ☆75Updated 4 years ago
• nipunjaswal / networkforensics
  Hands-On Network Forensics by Nipun Jaswal
  ☆41Updated last year
• adhdproject / gcat
  A PoC backdoor that uses Gmail as a C&C server
  ☆12Updated 4 years ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆42Updated last month
• 0xtf / HAMISPA
  Notes for High Availability MISP in AWS
  ☆19Updated 5 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 7 months ago
• corelight / raspi-corelight
  Corelight@Home script
  ☆40Updated last year
• chrissanders / idh
  Intrusion Detection Honeypots Book Code
  ☆24Updated 4 years ago
• flowintel / flowintel
  An open source platform to support analysts to organise their case and tasks
  ☆55Updated this week
• splunk / attack-detections-collector
  Collects a listing of MITRE ATT&CK Techniques, then discovers Splunk ESCU detections for each technique
  ☆65Updated 8 months ago
• corelight / zeek2es
  A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…
  ☆35Updated 2 years ago
• SecurityNik / Data-Science-and-ML
  ☆31Updated 3 months ago
• MarkBaggett / reassembler
  Scapy packet fragment reassembly engines
  ☆34Updated 3 years ago
• mytechnotalent / Zeek-Network-Security-Monitor
  A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…
  ☆61Updated 2 years ago
• Loginsoft-LLC / threat-detection-rules
  Threat Detection & Anomaly Detection rules for popular open-source components
  ☆50Updated 2 years ago
• neolea / neolea-training-materials
  Open source training materials for law-enforcement and organisations interested in DFIR.
  ☆56Updated 2 months ago
• UraSecTeam / mordor
  Re-play Adversarial Techniques
  ☆26Updated 3 years ago