certego / PcapMonkey
PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
☆151Updated last week
Alternatives and similar repositories for PcapMonkey:
Users that are interested in PcapMonkey are comparing it to the libraries listed below
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆68Updated 2 months ago
- Mapping NSM rules to MITRE ATT&CK☆70Updated 4 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆123Updated 3 years ago
- ☆78Updated 4 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆100Updated 3 years ago
- S2AN - Mapper of Sigma/Suricata Rules/Signatures ➡️ MITRE ATT&CK Navigator☆85Updated 2 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆76Updated 2 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆61Updated last year
- simple YARA-based IOC scanner☆169Updated last month
- Suricata rules for network anomaly detection☆156Updated last week
- Import specific data sources into the Sigma generic and open signature format.☆77Updated 2 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆262Updated 2 years ago
- A Splunk App containing Sigma detection rules, which can be updated from a Git repository.☆108Updated 5 years ago
- Snorpy is a python script the gives a Gui interface to help those new to snort create rules.☆61Updated 7 months ago
- A Ruleset to enhance detection capabilities of Ossec using Sysmon☆91Updated 2 years ago
- SIGMA UI is a free open-source application based on the Elastic stack and Sigma Converter (sigmac)☆185Updated 3 years ago
- ☆41Updated 2 years ago
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆137Updated 4 years ago
- Collecting & Hunting for IOCs with gusto and style☆237Updated 3 years ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- This program exports MITRE ATT&CK framework in ELK dashboard☆78Updated 2 years ago
- Zeek IDS Dockerfile☆101Updated 2 years ago
- PatrOwl - Open Source, Free and Scalable Security Operations Orchestration Platform☆148Updated 2 years ago
- Personal compilation of APT malware from whitepaper releases, documents and own research☆259Updated 6 years ago
- Log Entry to Sigma Rule Converter☆107Updated 3 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆100Updated 2 months ago
- Automatically create YARA rules from malicious documents.☆210Updated 2 years ago
- Live forensic artifacts collector☆165Updated 8 months ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆75Updated 7 years ago
- Cisco Orbital - Osquery queries by Talos☆130Updated 6 months ago