aquasecurity / traceesharkLinks
Deep Linux runtime visibility meets Wireshark
☆291Updated last week
Alternatives and similar repositories for traceeshark
Users that are interested in traceeshark are comparing it to the libraries listed below
Sorting:
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆310Updated last week
- Threat-hunting tool for Linux☆925Updated 2 weeks ago
- Analyze pcaps with Zeek and a Grafana Dashboard☆177Updated last year
- BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generato…☆380Updated last week
- Automation tool for Windows Deception Host Burn-In☆86Updated 6 months ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆168Updated 4 months ago
- ☆143Updated 3 weeks ago
- Red Canary's eBPF Sensor☆107Updated 2 weeks ago
- CRADLE is a collaborative platform for Cyber Threat Intelligence analysts. It streamlines threat investigations with integrated note-taki…☆239Updated this week
- PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.☆224Updated 2 months ago
- MITRE Caldera™ for OT Plugins & Capabilities☆213Updated 7 months ago
- An offensive data enrichment pipeline☆733Updated last week
- Downloads Information from NIST (CVSS), first.org (EPSS), and CISA (Exploited Vulnerabilities) and combines them into one list. Reports f…☆143Updated 2 years ago
- A centralized and enhanced memory analysis platform☆464Updated last month
- Halberd : Multi-Cloud Agentic Attack Tool☆282Updated this week
- SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System☆123Updated 3 weeks ago
- quicmap is a simple yet quic (!) QUIC protocol scanner☆87Updated last year
- ☆261Updated 7 months ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆225Updated this week
- A sandbox environment designed for loading, running and profiling a wide range of files, including machine learning models, ELFs, Pickle,…☆322Updated last week
- Pen Test Report Generation and Assessment Collaboration☆531Updated this week
- io_uring based rootkit☆206Updated 2 months ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆171Updated 3 weeks ago
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆257Updated last week
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆129Updated this week
- This is a collection of threat detection rules / rules engines that I have come across.☆290Updated last year
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Updated 9 months ago
- The TTPForge is a Cybersecurity Framework for developing, automating, and executing attacker Tactics, Techniques, and Procedures (TTPs).☆382Updated 2 weeks ago
- Add a layer of active defense to your cloud applications.☆92Updated this week
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆216Updated 2 weeks ago