Extracts fields from zeek logs, compatible with zeek-cut
☆27Jul 10, 2024Updated last year
Alternatives and similar repositories for zcutter
Users that are interested in zcutter are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆81Mar 19, 2026Updated last month
- Tools for simulating threats☆203Oct 27, 2023Updated 2 years ago
- A remote access trojan to use against Santa's laptop!☆14Nov 28, 2021Updated 4 years ago
- ☆10Oct 12, 2021Updated 4 years ago
- ☆13Nov 24, 2019Updated 6 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Learn about a network from a pcap file or reading from an interface☆29Apr 6, 2024Updated 2 years ago
- ☆46Jun 1, 2025Updated 11 months ago
- Threat Hunting Toolkit is a Swiss Army knife for threat hunting, log processing, and security-focused data science☆152Apr 1, 2026Updated last month
- maltego osint tool on kali linux☆15Mar 7, 2017Updated 9 years ago
- Passive service locator, a python sniffer that identifies servers, clients, names and much more☆262Feb 9, 2026Updated 2 months ago
- Kerberos Haters Guide to Zeek Threat Hunting☆34Oct 14, 2021Updated 4 years ago
- Stealth is a File Integrity scanner performing its work in a stealthy way.☆12Jun 25, 2018Updated 7 years ago
- A PoC backdoor that uses Gmail as a C&C server☆13Jun 28, 2020Updated 5 years ago
- This program is designed to pull relevant current news articles for keywords defined in a keywords.csv file. GRC professionals can use th…☆33Jul 31, 2024Updated last year
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- Thor Artifacts for Velociraptor☆19Dec 2, 2025Updated 5 months ago
- Using cloudflare workers and DOs to make a https tunnel that scales☆26Nov 22, 2025Updated 5 months ago
- Firmware for the TH3D EZPlug products. Based on Tasmota.☆19Apr 8, 2025Updated last year
- Zeek package for tracking long connections to report them before they have completed.☆31Nov 25, 2025Updated 5 months ago
- A Bro package to identify connections that are bursting (lots of data and transferring quickly).☆13Oct 15, 2020Updated 5 years ago
- Extensions for Zeek's Intelligence Framework.☆11Mar 1, 2022Updated 4 years ago
- Bro Detection Scripts☆10Mar 9, 2021Updated 5 years ago
- netbeacon - monitoring your network capture, NIDS or network analysis process☆20Apr 5, 2026Updated 3 weeks ago
- Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.☆16Jan 28, 2020Updated 6 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Add POST body excerpt to Bro's HTTP log☆14Dec 10, 2025Updated 4 months ago
- Unicode Security Toolkit☆21Updated this week
- A comprehensive Model Context Protocol (MCP) server that provides access to over 100 IT tools and utilities commonly used by developers, …☆21Apr 15, 2026Updated 2 weeks ago
- IPFIXify reads ordinary text based log files, receives syslogs, parses Windows EventLogs, collects System Metrics, and more. Once collect…☆12Mar 6, 2018Updated 8 years ago
- Selectively permeable boundary for AI agents☆51Apr 17, 2026Updated 2 weeks ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,511Jan 12, 2026Updated 3 months ago
- ☆14Sep 15, 2017Updated 8 years ago
- Iterate over Windows Handles☆16Nov 18, 2025Updated 5 months ago
- Tool to log conntrack flows and associated process/service info☆16Jul 13, 2017Updated 8 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Random notes collected on the intertubes relating to DFIR☆36Jun 26, 2023Updated 2 years ago
- MailDir processor package for https://github.com/flashmob/go-guerrilla☆22Mar 18, 2017Updated 9 years ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆76Aug 20, 2025Updated 8 months ago
- Zeek Log Cheatsheets☆305Aug 12, 2025Updated 8 months ago
- ☆19May 30, 2022Updated 3 years ago
- Extracts Windows user info including the password hashes☆40Jul 26, 2016Updated 9 years ago
- Osquery Packs we use for customer security hardening☆12Jun 30, 2025Updated 10 months ago