alexwebr / sshflow
Proof-of-concept that makes a guess at what applications are being tunneled through an SSH session. It works primarily by analyzing packet sizes and inter-packet timing.
☆10Updated 11 years ago
Alternatives and similar repositories for sshflow:
Users that are interested in sshflow are comparing it to the libraries listed below
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Vulnerability Assessment and Auditing Framework for all the Crypto Implementations.☆37Updated 8 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- An automated collection and analysis of malware from my honeypots.☆25Updated 7 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- A collection of Volatility Framework plugins.☆26Updated 11 years ago
- Cross Distribution Exploit Testing☆28Updated 9 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 7 years ago
- DNS Enumeration and Reconnaissance Tool☆37Updated 9 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- simple plugin to detect shellcode on Bro IDS with Unicorn☆33Updated 8 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- Detect malicious domain, Blablablablabla☆26Updated 8 years ago
- A Network Inspection Tool☆81Updated 7 years ago
- CVE-2016-1287 vulnerability test☆16Updated 9 years ago
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆42Updated 8 years ago
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 10 years ago
- Artefacts from various retefe campaigns☆10Updated 6 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- ssh key exchange layer for scapy☆13Updated 10 years ago
- Ansible playbook to install Malware Information Sharing Platform (MISP)☆17Updated 10 years ago
- Megatron - A System for Abuse- and Incident Handling☆44Updated 8 years ago
- Maltese - Malware Traffic Emulator☆26Updated 8 years ago
- post-exploitation tools☆15Updated 7 years ago
- Vagrant configuration to setup a Thug honeyclient VM☆20Updated 10 years ago