Alternatives and similar repositories for tls-tracing-with-ebpf

Users that are interested in tls-tracing-with-ebpf are comparing it to the libraries listed below

• evilsocket / ebpf-process-anomaly-detection
  Process behaviour anomaly detection using eBPF and unsupervised-learning Autoencoders
  ☆135Updated 3 years ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• D4-project / architecture
  Architecture - design and implementation of the D4 project architecture
  ☆16Updated 5 months ago
• D4-project / sensor-d4-tls-fingerprinting
  Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s
  ☆37Updated 5 years ago
• lionaneesh / backdoors
  A list of backdoor samples I find online.
  ☆13Updated 5 years ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆14Updated 3 years ago
• draugnet / draugnet
  Draugnet is a lightweight, open-source tool for anonymous cyber threat reporting. Built for the MISP ecosystem, it lets users submit and …
  ☆19Updated 3 months ago
• wrayjustin / yaids
  YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…
  ☆26Updated 3 years ago
• haxrob / gtpdoor-scan
  ☆23Updated last year
• redballoonsecurity / bal
  A framework for parsing binary data.
  ☆18Updated 3 years ago
• DevoInc / sightingdb
  Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen
  ☆17Updated last year
• adulau / napkin-text-analysis
  Napkin is a simple tool to produce statistical analysis of a text
  ☆12Updated last year
• kaansk / go-epss
  A Golang library for interacting with the EPSS (Exploit Prediction Scoring System).
  ☆30Updated 9 months ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆17Updated last year
• ait-cs-IaaS / Taranis-NG
  Taranis NG is an OSINT gathering and analysis tool for CSIRT teams and organisations. It allows team-to-team collaboration, and contains …
  ☆10Updated 2 years ago
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 3 years ago
• pathtofile / bpf-pipesnoop
  Example program using eBPF to log data being based in using shell pipes
  ☆41Updated 4 years ago
• scottgerring / minderbinder
  Use eBPF to inject chaos into local processes
  ☆66Updated last year
• eCrimeLabs / cratos-fastapi
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Updated 2 months ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• UTSA-cyber / sceadan
  Systematic Classification Engine for Advanced Data ANalysis
  ☆22Updated 8 years ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Updated last year
• behas / ransomware-dataset
  Economics of Ransomware | Dataset
  ☆15Updated 7 years ago
• grapl-security / grapl-analyzers
  Hosted analyzers built for Grapl
  ☆14Updated 2 years ago
• samuelesabella / ebpflow
  This repo aims to offer a packet flow tracer based on bpf
  ☆13Updated 6 years ago
• vulnerability-lookup / VulnTrain
  A tool to generate datasets and models based on vulnerabilities descriptions from @Vulnerability-Lookup.
  ☆21Updated last week
• tarsal-oss / kflowd
  Kernel-based Process Monitoring on Linux Endpoints for File System, TCP and UDP Networking Events and optionally DNS, HTTP and SYSLOG App…
  ☆71Updated 8 months ago
• silascutler / IntelDB
  Minimal Indicator Storage System
  ☆11Updated 4 years ago
• nccgroup / insject
  insject is a tool for poking at containers. It enables you to run an arbitrary command in a container or any mix of Linux namespaces.
  ☆50Updated 3 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year