alexwebr / sshflowLinks
Proof-of-concept that makes a guess at what applications are being tunneled through an SSH session. It works primarily by analyzing packet sizes and inter-packet timing.
☆10Updated 11 years ago
Alternatives and similar repositories for sshflow
Users that are interested in sshflow are comparing it to the libraries listed below
Sorting:
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- CVE-2016-1287 vulnerability test☆16Updated 9 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 7 months ago
- Cross Distribution Exploit Testing☆28Updated 9 years ago
- Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis☆41Updated 8 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 5 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Vulnerability Assessment and Auditing Framework for all the Crypto Implementations.☆37Updated 8 years ago
- Advanced HTTP fingerprinting PoC☆44Updated 8 years ago
- Recon-ng modules that won't get accepted into the main distribution because of 3rd party dependencies.☆18Updated 11 years ago
- Test suite for bypassing Malware sandboxes.☆39Updated 10 years ago
- Artefacts from various retefe campaigns☆10Updated 6 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- post-exploitation tools☆15Updated 7 years ago
- A small wriiteup and a PoC tool about how to use SO_REUSADDR for firewall evasion☆26Updated 9 years ago
- Data exfiltration PoC scripts☆24Updated 9 years ago
- intel amt honeypot☆18Updated 8 years ago
- McAfee ePolicy 0wner exploit code☆46Updated 6 years ago
- Exfiltration Framework - Exfiltration modeling tool written in Python. Naisho attempts to avoid detection from DLP, IPS/IDS egress filter…☆38Updated 10 years ago
- SEQ/Ack signature triggered SSL back connect☆10Updated 9 years ago
- An automated collection and analysis of malware from my honeypots.☆25Updated 7 years ago
- An active domain name query tool to help keep track of domain name movements...☆15Updated 4 years ago
- Detect malicious domain, Blablablablabla☆26Updated 8 years ago
- Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)☆30Updated 10 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- python based backdoor software☆17Updated 13 years ago
- MalRecon - Basic Malware Reconnaissance and Analysis Tool☆26Updated 7 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- Finds dynamic DNS (like no-ip.org) domains from a given list of domains☆14Updated 9 years ago