aquasecurity / traceesharkLinks
Deep Linux runtime visibility meets Wireshark
☆300Updated 2 months ago
Alternatives and similar repositories for traceeshark
Users that are interested in traceeshark are comparing it to the libraries listed below
Sorting:
- Analyze pcaps with Zeek and a Grafana Dashboard☆189Updated last year
- Threat-hunting tool for Linux☆1,030Updated 2 months ago
- SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System☆169Updated last month
- blint is a Binary Linter that checks the security properties and capabilities of your executables. It can also generate a Software Bill-o…☆429Updated last month
- PolarDNS is a specialized authoritative DNS server suitable for penetration testing and vulnerability research.☆232Updated 6 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆501Updated 3 weeks ago
- A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…☆185Updated 11 months ago
- Automation tool for Windows Deception Host Burn-In☆86Updated last year
- How to setup a honeypot with an IDS, ELK and TLS traffic inspection☆164Updated 3 years ago
- An index of publicly available and open-source threat detection rulesets.☆130Updated 9 months ago
- 🐍 High-performance, multi-threaded YARA & IOC scanner☆229Updated this week
- ☆75Updated 10 months ago
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆55Updated 2 months ago
- eBPF Memory Dump Tool☆97Updated 4 months ago
- CRADLE is a collaborative platform for Cyber Threat Intelligence analysts. It streamlines threat investigations with integrated note-taki…☆332Updated this week
- Modern honeypot supporting multiple services, realistic website cloning, and AI-powered features☆156Updated last month
- Helm charts for running open source digital forensic tools in Kubernetes☆179Updated this week
- Suzaku (朱雀) is a sigma-based threat hunting and fast forensics timeline generator for cloud logs.☆163Updated last month
- Fingerprint-aware TLS reverse proxy. Use Finch to outsmart bad traffic—collect client fingerprints (JA3, JA4 +QUIC, JA4H, HTTP/2) and act…☆285Updated last month
- DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!☆272Updated 7 months ago
- RequestShield is a 100% Free and OpenSource tool designed to analyze HTTP access.logs and identify suspicious HTTP requests and potential…☆106Updated last year
- Your Swiss Army knife to analyze malicious web traffic based on mitmproxy.☆64Updated 5 months ago
- Volatile Artifact Collector collects a snapshot of volatile data from a system. It tells you what is happening on a system, and is of par…☆253Updated last year
- JA4TScan is an active TCP server fingerprinting tool.☆102Updated last year
- A repository of credential stealer formats☆238Updated 7 months ago
- HASH (HTTP Agnostic Software Honeypot)☆141Updated last year
- Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streaml…☆433Updated this week
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆151Updated last year
- ☆86Updated last week
- MITRE Caldera™ for OT Plugins & Capabilities☆230Updated 3 weeks ago