benjeems / packetStriderLinks
A network packet forensics tool for SSH
☆252Updated 4 years ago
Alternatives and similar repositories for packetStrider
Users that are interested in packetStrider are comparing it to the libraries listed below
Sorting:
- A malware analysis and classification tool.☆190Updated 3 years ago
- Endpoint detection & Malware analysis software☆230Updated 5 years ago
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆153Updated 2 months ago
- snake - a malware storage zoo☆216Updated last year
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆447Updated 2 years ago
- simple YARA-based IOC scanner☆169Updated 3 months ago
- Toolset for research malware and Cobalt Strike beacons☆211Updated 2 months ago
- IOC from articles, tweets for archives☆313Updated last year
- 16,432 Free Yara rules created by☆383Updated 6 years ago
- PA Toolkit is a collection of traffic analysis plugins focused on security☆434Updated 5 years ago
- Cuckoo running in a nested hypervisor☆128Updated 5 years ago
- Information released publicly by NCC Group's Cyber Incident Response Team☆476Updated 3 years ago
- ☆334Updated 2 years ago
- This repository contains the website and the tools which are part of the joint research between Check Point Research and Intezer to map t…☆110Updated 5 years ago
- Digital forensic acquisition tool for Windows based incident response.☆341Updated last year
- Personal compilation of APT malware from whitepaper releases, documents and own research☆260Updated 6 years ago
- Automated Tactics Techniques & Procedures☆255Updated 2 years ago
- Automatic deployment of Cuckoo Sandbox malware lab using Packer and Vagrant☆236Updated 2 years ago
- Minimal, consistent Python API for building integrations with malware sandboxes.☆139Updated last year
- Web App for Volatility framework☆381Updated 6 months ago
- Beta versions of my software☆252Updated this week
- Decept Network Protocol Proxy☆276Updated 2 years ago
- ☆172Updated 3 years ago
- ☆165Updated 4 years ago
- Cross-platform Yara scanner written in Go☆328Updated 2 years ago
- Collecting & Hunting for IOCs with gusto and style☆238Updated 3 years ago
- Test Blue Team detections without running any attack.☆272Updated last year
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago