Steve McCanne's Sharkfest '21 Talk
☆16Oct 12, 2021Updated 4 years ago
Alternatives and similar repositories for sharkfest-21
Users that are interested in sharkfest-21 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Kafka connector to sync Zed lakes to and from Kafka topics☆18Dec 4, 2025Updated 3 months ago
- Add POST body excerpt to Bro's HTTP log☆14Dec 10, 2025Updated 3 months ago
- Releases for the Zui Insiders app.☆22Feb 17, 2025Updated last year
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- Splits strings into tokens by given separator, treating quoted part as a single token.☆17May 25, 2019Updated 6 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆32Sep 16, 2024Updated last year
- Scripts to threat optics stack quickly / abbreviated and automated. Run after APT-Lab-Terraform☆13Oct 24, 2020Updated 5 years ago
- ☆13Apr 8, 2022Updated 3 years ago
- Searches for Insider Threat Hunting☆29May 2, 2019Updated 6 years ago
- Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes☆16Aug 10, 2022Updated 3 years ago
- ☆18Jun 8, 2018Updated 7 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Apr 21, 2025Updated 11 months ago
- (kinda) Malicious Outlook Reader☆19Mar 2, 2021Updated 5 years ago
- ☆11Mar 9, 2018Updated 8 years ago
- Various tools, scripts, and techniques☆19May 13, 2020Updated 5 years ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆93Apr 25, 2025Updated 11 months ago
- PyCommand Scripts for Immunity Debugger☆37Jun 21, 2014Updated 11 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Feb 20, 2024Updated 2 years ago
- Small bash function library to turn on bash options that enhance robustness of scripts.☆17Apr 17, 2025Updated 11 months ago
- ☆21Oct 28, 2021Updated 4 years ago
- A simple, beautiful Jekyll theme that's mobile first.☆15Jan 5, 2023Updated 3 years ago
- Presentation Slides and Video links☆32Nov 8, 2021Updated 4 years ago
- convert OVF vm packages to smartos compatible images☆29Feb 4, 2016Updated 10 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44May 9, 2024Updated last year
- A no-nonsense, barebone, GUI activator for recent 64-bit Microsoft Windows operating systems.☆16Feb 16, 2022Updated 4 years ago
- An analytics database that puts JSON and relational tables on equal footing☆1,527Updated this week
- PacketSled's Bro AMQP Writer Plugin☆11Aug 5, 2016Updated 9 years ago
- Small program to generate a Graphviz dot file to visualize a SQLite schema and foreign keys structure☆13Mar 6, 2017Updated 9 years ago
- SFSE plugin code for Starfield Shader Injector.☆13Mar 15, 2025Updated last year
- Zeek network security monitor plugin that enables parsing of the BACnet standard building controls protocol☆30Apr 23, 2025Updated 11 months ago
- Zeek network security monitor plugin that enables parsing of the Profinet protocol☆31May 30, 2024Updated last year
- Pcaps for PeddleCheap and implant communication + script for interpreting and decrypting pcaps.☆17Nov 29, 2017Updated 8 years ago
- My emacs configuration☆10Dec 30, 2016Updated 9 years ago
- ☆13Aug 13, 2021Updated 4 years ago
- Expandable Defensive Cyber Operations Platform☆44Sep 28, 2022Updated 3 years ago
- LILLY - Latex Framework☆12Jul 29, 2021Updated 4 years ago
- Enables Zeek to communicate with Tenzir☆11Jul 20, 2023Updated 2 years ago
- Resources for Starfield reverse engineering (PDBs, FLIRT sigs, IDA plugins, etc.)☆14Sep 14, 2023Updated 2 years ago
- Almost portable emacs settings☆12Jul 26, 2014Updated 11 years ago