aquasecurity / traceesharkLinks
Deep Linux runtime visibility meets Wireshark
☆291Updated 3 weeks ago
Alternatives and similar repositories for traceeshark
Users that are interested in traceeshark are comparing it to the libraries listed below
Sorting:
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆298Updated last week
- Threat-hunting tool for Linux☆887Updated last week
- BLint is a Binary Linter to check the security properties, and capabilities in your executables. Since v2, blint is also an SBOM generato…☆370Updated last month
- Automation tool for Windows Deception Host Burn-In☆86Updated 6 months ago
- How to setup a honeypot with an IDS, ELK and TLS traffic inspection☆157Updated 2 years ago
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆300Updated this week
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆245Updated this week
- ☆141Updated 3 months ago
- A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing. Gain visibility and contr…☆213Updated last week
- MITRE Caldera™ for OT Plugins & Capabilities☆212Updated 6 months ago
- Red Canary's eBPF Sensor☆107Updated 3 weeks ago
- Analyze pcaps with Zeek and a Grafana Dashboard☆177Updated last year
- PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.☆224Updated 2 months ago
- Halberd : Multi-Cloud Attack Tool☆278Updated 3 weeks ago
- Automated YARA Rule Standardization and Quality Assurance Tool☆223Updated this week
- This is a collection of threat detection rules / rules engines that I have come across.☆290Updated last year
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆150Updated 8 months ago
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆124Updated this week
- Data visualization for blue teams☆126Updated 2 years ago
- A standard for reducing log volume without sacrificing analytical capability☆205Updated 3 months ago
- ☆261Updated 6 months ago
- Knowledge base on cybercriminal concealment techniques☆68Updated 3 weeks ago
- Rapidly Search and Hunt through Linux Forensics Artifacts☆192Updated last year
- A centralized and enhanced memory analysis platform☆463Updated 2 weeks ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆164Updated 3 months ago
- Mapping of open-source detection rules and atomic tests.☆166Updated 4 months ago
- Roota is a public-domain language of threat detection and response that combines native queries from a SIEM, EDR, XDR, or Data Lake with …☆128Updated 10 months ago
- HASH (HTTP Agnostic Software Honeypot)☆137Updated last year
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆253Updated 6 months ago
- This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.☆286Updated 2 years ago