automayt / FlowPlotterLinks
Generates visualizations from the output of flow tools such as SiLK.
☆35Updated 8 years ago
Alternatives and similar repositories for FlowPlotter
Users that are interested in FlowPlotter are comparing it to the libraries listed below
Sorting:
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 10 months ago
- The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams☆37Updated 3 years ago
- Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.☆69Updated last year
- Home to the ActorTrackr source code☆24Updated 8 years ago
- Validate IOC from MISP ; Export results and iocs to SIEM and sensors using syslog and CEF format☆14Updated 8 years ago
- An ICAP Server with yara scanner for URL and content.☆58Updated 8 months ago
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 8 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 6 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Updated 10 years ago
- ☆17Updated 7 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- SANS Hunting on the Cheap☆35Updated 9 years ago
- Script for generating Bro intel files from pdf or html reports☆77Updated 9 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 8 years ago
- Passive DNS V2☆60Updated 11 years ago
- Bro Intel Feed Linter☆26Updated 5 years ago
- Yara rules I've written☆10Updated 9 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Updated 8 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Updated 9 years ago
- integrating bro into yara☆33Updated 10 years ago
- A Python script for indexing (putting) FireEye alert data into Elasticsearch...and notifying you too.☆16Updated 6 years ago
- Splunk integration with MISP☆12Updated 7 years ago
- ☆85Updated 12 years ago
- Workbench: A scalable python framework for security research and development teams.☆92Updated 5 years ago
- Extract information from MISP via the API☆15Updated 9 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- Performs OCR on image files and scans them for matches to YARA rules☆41Updated 6 years ago