Alternatives and similar repositories for packetStrider

Users that are interested in packetStrider are comparing it to the libraries listed below

• netspooky / inhale
  A malware analysis and classification tool.
  ☆190Updated 3 years ago
• yarox24 / attack_monitor
  Endpoint detection & Malware analysis software
  ☆229Updated 5 years ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆159Updated 7 months ago
• WithSecureLabs / snake
  snake - a malware storage zoo
  ☆217Updated 2 years ago
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆170Updated last month
• Kirtar22 / Litmus_Test
  Detecting ATT&CK techniques & tactics for Linux
  ☆258Updated 5 years ago
• ashemery / CuckooVM
  Cuckoo running in a nested hypervisor
  ☆128Updated 5 years ago
• sapphirex00 / Threat-Hunting
  Personal compilation of APT malware from whitepaper releases, documents and own research
  ☆265Updated 6 years ago
• jymcheong / AutoTTP
  Automated Tactics Techniques & Procedures
  ☆257Updated 2 years ago
• botherder / kraken
  Cross-platform Yara scanner written in Go
  ☆327Updated 2 years ago
• SekoiaLab / Fastir_Collector_Linux
  ☆174Updated 4 years ago
• aatlasis / Chiron
  Chiron - An IPv6 Security Assessment framework with advanced IPv6 Extension Headers manipulation capabilities.
  ☆208Updated 7 years ago
• 0xsha / sweetie-data
  This repo contains logstash of various honeypots
  ☆174Updated 5 years ago
• GreyNoise-Intelligence / GNQL
  GreyNoise Query Language
  ☆82Updated 6 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆287Updated 8 years ago
• dgunter / evtxtoelk
  A lightweight tool to load Windows Event Log evtx files into Elasticsearch.
  ☆119Updated 5 years ago
• InQuest / sandboxapi
  Minimal, consistent Python API for building integrations with malware sandboxes.
  ☆141Updated last year
• DevoInc / pCraft
  pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.
  ☆90Updated last year
• DarkenCode / yara-rules
  Repository of yara rules
  ☆49Updated 10 years ago
• Elemental-attack / Elemental
  Elemental - An ATT&CK Threat Library
  ☆320Updated 2 years ago
• k-vitali / Malware-Misc-RE
  Miscellaneous Malware RE
  ☆196Updated 3 years ago
• la3ar0v / TuxResponse
  Linux Incident Response
  ☆90Updated 6 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 3 years ago
• fr0gger / vthunting
  Vthunting is a tiny script used to generate report about Virus Total hunting and send it by email, slack or telegram.
  ☆167Updated 2 years ago
• Xumeiquer / yara-forensics
  Set of Yara rules for finding files using magics headers
  ☆141Updated 5 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆204Updated 3 years ago
• Cisco-Talos / file2pcap
  ☆174Updated 4 years ago
• pentesteracademy / patoolkit
  PA Toolkit is a collection of traffic analysis plugins focused on security
  ☆433Updated 6 years ago
• rosehgal / HoneySMB
  Simple High Interaction Honeypot Solution for SMB protocol
  ☆49Updated 4 years ago
• Cymmetria / ciscoasa_honeypot
  A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.
  ☆52Updated 6 years ago