Alternatives and similar repositories for sniffer-template

Users that are interested in sniffer-template are comparing it to the libraries listed below

• activecm / pcap-stats
  Learn about a network from a pcap file or reading from an interface
  ☆29Updated last year
• activecm / devprof
  Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.
  ☆16Updated 5 years ago
• activecm / espy
  Endpoint detection for remote hosts for consumption by RITA and Elasticsearch
  ☆80Updated last month
• adhdproject / honeyports
  a port made of honey for blocking people
  ☆13Updated 5 years ago
• activecm / docker-zeek
  Run zeek with zeekctl in docker
  ☆56Updated last year
• splunk / salo
  Synthetic Adversarial Log Objects: A Framework for synthentic log generation
  ☆85Updated last year
• SecurityNik / Data-Science-and-ML
  ☆43Updated this week
• activecm / smudge
  Passive OS detection based on SYN packets without Transmitting any Data
  ☆49Updated 2 years ago
• cisagov / ioc-scanner
  Search a filesystem for indicators of compromise (IoC).
  ☆81Updated last month
• Security-Onion-Solutions / securityonion-docs
  ☆93Updated 2 weeks ago
• OTRF / infosec-jupyter-book
  The Infosec Community Definitive Guide to Jupyter Notebooks
  ☆129Updated 5 years ago
• activecm / passer
  Passive service locator, a python sniffer that identifies servers, clients, names and much more
  ☆256Updated 2 years ago
• activecm / zcutter
  Extracts fields from zeek logs, compatible with zeek-cut
  ☆23Updated last year
• cisagov / ACID
  ☆72Updated 7 months ago
• MISP / misp-stix
  MISP-STIX-Converter - Python library to handle the conversion between MISP and STIX formats
  ☆56Updated this week
• corelight / raspi-corelight
  Corelight@Home script
  ☆45Updated 2 years ago
• Resistor52 / terraform-cloud-workstation
  Use Terraform to Provision Your Own Cloud-Based Remote Browsing Workstation
  ☆26Updated last year
• tuckner / automation-capability-matrix
  A tool that allows you to document and assess any security automation in your SOC
  ☆47Updated last year
• CERT-Bund / IRNetTools
  Incident Response Network Tools
  ☆24Updated 4 years ago
• corelight / threat-hunting-guide
  ☆55Updated 3 years ago
• eCrimeLabs / MISP-PurgeEvents
  Cleanup of older MISP events can require some work until now
  ☆27Updated 2 months ago
• csirtgadgets / cif-v5
  The FASTEST way to consume threat intel.
  ☆69Updated 2 years ago
• chrissanders / idh
  Intrusion Detection Honeypots Book Code
  ☆26Updated 5 years ago
• cudeso / misp-tip-of-the-week
  A collection of tips for using MISP.
  ☆74Updated 11 months ago
• CrowdStrike / MISP-tools
  Import CrowdStrike Threat Intelligence into your instance of MISP
  ☆48Updated 5 months ago
• adhdproject / awesome-active-defense
  an awesome list of active defense resources
  ☆126Updated 5 years ago
• malpedia / malpediaclient
  ☆27Updated 3 months ago
• infosecB / detection-as-code
  An example of how to deploy a Detection as Code pipeline using Sigma Rules, Sigmac, Gitlab CI, and Splunk.
  ☆59Updated 3 years ago
• MarkBaggett / reassembler
  Scapy packet fragment reassembly engines
  ☆33Updated 4 years ago
• santiago-bassett / Alienvault-Demo_scripts
  Scripts to inject demo data and network traffic into an existing Alienvault/OSSIM installation
  ☆21Updated 8 years ago