adulau / netbeacon

Related projects ⓘ

Alternatives and complementary repositories for netbeacon

• woanware / bgp-watcher
  Prototype system to monitor BGP routes and alert when anomalies are identified
  ☆14Updated 5 years ago
• adulau / passive-dns-atlas
  Passive DNS collection (and statistics) from RIPE Atlas Sensors
  ☆19Updated 7 years ago
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 4 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆31Updated last month
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• SekoiaLab / FastIR_Server
  The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent
  ☆12Updated 7 years ago
• opendxl / opendxl-broker
  OpenDXL Broker is an open source version of a Data Exchange Layer (DXL) broker
  ☆13Updated 9 months ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 6 years ago
• wolfvan / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• hjunker / ProcessBouncer
  ProcessBouncer is a simple but effective tool for blocking malware with a process-based approach. With a little fine-tuning this allows t…
  ☆24Updated 3 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 3 years ago
• adulau / pdns-qof-server
  Passive DNS server interface compliant to "Common Output Format"
  ☆10Updated 8 years ago
• kf0jvt / deez_factors
  Looks for GitHub org users without 2FA turned on
  ☆9Updated 8 years ago
• robvandenbrink / CVEScan
  List CVEs and details that apply to your infrastructure (pre-inventoried).
  ☆10Updated 3 years ago
• davebremer / Export-SysmonLogs
  ☆11Updated 6 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 3 years ago
• ohjeongwook / WindowsEventTools
  Collection Of Scripts And Utilities For Windows Event Hunting
  ☆16Updated 4 years ago
• tenzir / zeek-tenzir
  Enables Zeek to communicate with Tenzir
  ☆11Updated last year
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆40Updated 4 years ago
• 9b / lazyeye
  Chrome extension to extract data from websites surfed inside of chrome
  ☆18Updated 9 years ago
• adi928 / brocata
  Porting Suricata to Bro signatures
  ☆6Updated 5 years ago
• corelight / zerologon
  Zeek package to detect Zerologon
  ☆11Updated 3 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated last month
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• WithSecureLabs / FLAIR
  F-Secure Lightweight Acqusition for Incident Response (FLAIR)
  ☆16Updated 3 years ago
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated 7 months ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago