Mercury: network metadata capture and analysis
☆499Feb 18, 2026Updated 2 weeks ago
Alternatives and similar repositories for mercury
Users that are interested in mercury are comparing it to the libraries listed below
Sorting:
- A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.☆1,354Apr 1, 2024Updated last year
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆80Sep 13, 2023Updated 2 years ago
- FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …☆679Oct 28, 2023Updated 2 years ago
- NFStream: a Flexible Network Data Analysis Framework.☆1,197Feb 15, 2026Updated 2 weeks ago
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆545May 1, 2025Updated 10 months ago
- Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen☆17Apr 11, 2024Updated last year
- Hfinger - fingerprinting HTTP requests☆142May 16, 2023Updated 2 years ago
- JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.☆3,072May 1, 2025Updated 10 months ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 2 years ago
- A tool to facilitate ROP Chain Development for XML Character Sanitization☆20May 9, 2019Updated 6 years ago
- TLS Fingerprinting☆397Oct 20, 2020Updated 5 years ago
- The Security Analyst’s Guide to Suricata☆61Apr 28, 2025Updated 10 months ago
- PoC for CVE-2017-0075☆37Sep 12, 2019Updated 6 years ago
- ☆111Dec 27, 2019Updated 6 years ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,344Feb 19, 2026Updated 2 weeks ago
- Go implementation of the Community ID flow hashing standard☆21Apr 17, 2025Updated 10 months ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- ☆38Nov 20, 2025Updated 3 months ago
- Network traffic classification library that requires minimal application payload☆218Aug 13, 2024Updated last year
- Python rewrite of passive OS fingerprinting tool☆210Dec 24, 2025Updated 2 months ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆92Apr 25, 2025Updated 10 months ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆511Feb 27, 2026Updated last week
- Re-play Security Events☆1,725Mar 20, 2024Updated last year
- pyJARM is a library for doing JARM fingerprinting using python☆50Mar 23, 2025Updated 11 months ago
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆7,310Updated this week
- Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors i…☆858Updated this week
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆164Mar 27, 2025Updated 11 months ago
- Attack Detection☆1,358Aug 31, 2022Updated 3 years ago
- a network packet capture compiler☆205Apr 28, 2022Updated 3 years ago
- A set of Zeek scripts to detect ATT&CK techniques.☆621Jun 26, 2024Updated last year
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆449Jan 16, 2024Updated 2 years ago
- Suricata rule and intel index☆33Jan 13, 2026Updated last month
- PCAP Samples for Different Post Exploitation Techniques☆368Apr 29, 2021Updated 4 years ago
- Tenzir is the data pipeline engine for security teams.☆725Updated this week
- ☆1,283Jul 13, 2023Updated 2 years ago
- 获取系统KB补丁对于的MS号☆24Aug 18, 2019Updated 6 years ago
- Slides(In both CN and EN) & WP(outdated) of my topic in HITCON 2019 about bug hunting in Android NFC☆15Aug 26, 2019Updated 6 years ago
- IDA Pro плагин для отображения результата Coresight ETM трассировки perf'а☆17Sep 4, 2018Updated 7 years ago
- Tool to decrypt the configuration of NanoCore and dump all used plugins☆12Dec 8, 2020Updated 5 years ago