benjeems / packetStrider
A network packet forensics tool for SSH
☆253Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for packetStrider
- A malware analysis and classification tool.☆192Updated 2 years ago
- PA Toolkit is a collection of traffic analysis plugins focused on security☆432Updated 5 years ago
- Endpoint detection & Malware analysis software☆226Updated 4 years ago
- Detecting ATT&CK techniques & tactics for Linux☆256Updated 4 years ago
- Chiron - An IPv6 Security Assessment framework with advanced IPv6 Extension Headers manipulation capabilities.☆204Updated 5 years ago
- Imaginary C2 is a python tool which aims to help in the behavioral (network) analysis of malware. Imaginary C2 hosts a HTTP server which …☆443Updated 2 years ago
- Easy files and payloads delivery over DNS☆415Updated 7 months ago
- SNIcat☆125Updated 3 years ago
- snake - a malware storage zoo☆217Updated last year
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆285Updated 7 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆144Updated 8 months ago
- Automated Tactics Techniques & Procedures☆251Updated last year
- Cuckoo running in a nested hypervisor☆128Updated 4 years ago
- This repo contains logstash of various honeypots☆174Updated 4 years ago
- ☆332Updated last year
- Decept Network Protocol Proxy☆276Updated last year
- simple YARA-based IOC scanner☆164Updated 2 months ago
- Toolset for research malware and Cobalt Strike beacons☆206Updated last year
- APT34/OILRIG leak☆231Updated 5 years ago
- A lightweight tool to load Windows Event Log evtx files into Elasticsearch.☆115Updated 4 years ago
- FCL (Fileless Command Lines) - Known command lines of fileless malicious executions☆462Updated 3 years ago
- Cross-platform Yara scanner written in Go☆330Updated last year
- Information released publicly by NCC Group's Cyber Incident Response Team☆475Updated 2 years ago
- A modular C2 framework☆396Updated last month
- Protocol Analysis/Decoder Framework☆489Updated last year
- Miscellaneous Malware RE☆195Updated 2 years ago
- A forensic evidence acquirer☆85Updated 3 years ago
- FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …☆655Updated last year
- ☆280Updated 6 years ago