Alternatives and similar repositories for tls-tracing-with-ebpf

Users that are interested in tls-tracing-with-ebpf are comparing it to the libraries listed below

• Prelude-SIEM / prelude-correlator
  The official Prelude-Correlator GitHub mirror of https://www.prelude-siem.org/projects/prelude-correlator/repository
  ☆10Updated 4 years ago
• team-cymru / iocs
  We publish indicators of compromise related to our stories here. See https://blog.team-cymru.com/ for more information.
  ☆9Updated 3 years ago
• chen-keinan / kube-knark
  Open Source runtime tool which help to detect malware code execution and run time mis-configuration change on a kubernetes cluster
  ☆36Updated 3 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated last year
• inetrg / spoki
  Artifacts of the USENIX Security 2022 paper "Spoki: Unveiling a New Wave of Scanners through a Reactive Network Telescope"
  ☆18Updated 7 months ago
• horia141 / sdhash
  Python library for image hashing and deduplication
  ☆11Updated 9 years ago
• ulfox / nettrust
  Dynamic Outbound Firewall Authorizer
  ☆22Updated 3 years ago
• wrayjustin / yaids
  YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…
  ☆24Updated 2 years ago
• sbaresearch / amlsec
  Automated Security Risk Identification Using AutomationML-based Engineering Data
  ☆28Updated 2 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 10 months ago
• evilsocket / ebpf-process-anomaly-detection
  Process behaviour anomaly detection using eBPF and unsupervised-learning Autoencoders
  ☆131Updated 2 years ago
• nccgroup / JA3_outlier
  Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
  ☆16Updated 2 years ago
• corelight / got_zoom
  A Zeek package that detects Zoom logins and meeting joins
  ☆12Updated 5 years ago
• zmap / pybulkwhois
  Python framework for manipulating bulk WHOIS data from RIRs
  ☆22Updated 3 years ago
• adulau / napkin-text-analysis
  Napkin is a simple tool to produce statistical analysis of a text
  ☆12Updated last year
• D4-project / sensor-d4-tls-fingerprinting
  Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s
  ☆37Updated 5 years ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• carlospolop / github_archive_scraper
  ☆17Updated last year
• hashlookup / PyHashlookup
  Python CLI and module for CIRCL hash lookup
  ☆14Updated last week
• faucetsdn / network-tools
  Network Tools
  ☆32Updated last year
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆26Updated 8 years ago
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated last year
• bakirtzisg / cybok-cli
  A vulnerability assessment tool for system models
  ☆13Updated 3 years ago
• CERT-Polska / karton-config-extractor
  Static configuration extractor for the Karton framework
  ☆10Updated 6 months ago
• abhinavbom / clara
  Serverless, real-time, ClamAV+Yara scanning for your S3 Buckets
  ☆31Updated 3 weeks ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• m-chrome / py-suricataparser
  Pure python parser for Snort/Suricata rules.
  ☆33Updated last year
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆10Updated last year