brendangregg / Chaosreader
An any-snarf program that processes application protocols (HTTP/FTP/...) from tcpdump or snoop files and stores session and file data
☆224Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for Chaosreader
- Suricata Extreme Performance Tuning guide☆204Updated 6 years ago
- Protocol Analysis/Decoder Framework☆489Updated last year
- The Official Github Repository of Daemonlogger☆20Updated 3 years ago
- Script for automating Linux memory capture and analysis☆264Updated 4 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆228Updated 3 years ago
- a network packet capture compiler☆194Updated 2 years ago
- graph visualization tool☆77Updated 9 years ago
- Common Vulnerabilities and Exposures - Portal☆82Updated 7 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- Convert 802.11 Packet Traces to XML and SQLITE Format☆66Updated 9 years ago
- Open Source Network Forensic Analysis Tool (NFAT)☆182Updated 4 years ago
- Barnyard2 is a dedicated spooler for Snort's unified2 binary output format.☆346Updated 7 months ago
- Wireshark plugin to display Suricata analysis info☆91Updated 3 years ago
- A python application designed to remotely dump RAM of a Linux client and create a volatility profile for later analysis on your local hos…☆161Updated 4 years ago
- Differential Analysis of Malware in Memory☆209Updated 7 years ago
- ☆167Updated 3 years ago
- Honeynet Project generic authenticated datafeed protocol☆212Updated last year
- Pulled Pork for Snort and Suricata rule management (from Google code)☆422Updated 3 years ago
- SIFT Bootstrap Script☆146Updated 7 years ago
- pastebin.com Content Monitoring Tool☆193Updated 12 years ago
- Web interface for the Volatility Memory Forensics Framework☆259Updated 7 years ago
- Bro/Zeek integration with osquery☆95Updated 4 years ago
- VolDiff: Malware Memory Footprint Analysis based on Volatility☆193Updated 7 years ago
- Sguil client for NSM☆214Updated 8 months ago
- Fast URL decoder library☆174Updated last year
- Application Layer IDS/IPS with iptables☆74Updated 5 years ago
- A Simple QUEry and Report Tool☆142Updated 5 years ago
- Yara integrated software to handle archive file data.☆299Updated 2 years ago