Alternatives and similar repositories for dnshjmon

Users that are interested in dnshjmon are comparing it to the libraries listed below

• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 5 years ago
• tklengyel / honeybrid
  Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…
  ☆31Updated 6 years ago
• johnnykv / mnemosyne
  Normalizer for honeypot data.
  ☆45Updated 10 years ago
• mandiant / synfulknock
  ☆49Updated 10 years ago
• sketchymoose / TotalRecall
  Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…
  ☆48Updated 8 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 12 years ago
• bostonlink / cuckooforcanari
  Cuckoo Sandbox Local Maltego Transforms Project
  ☆49Updated 11 years ago
• ikoniaris / thug-vagrant
  Vagrant configuration to setup a Thug honeyclient VM
  ☆20Updated 10 years ago
• infobyte / distro_checker
  Cross Distribution Exploit Testing
  ☆28Updated 10 years ago
• 504ensicsLabs / find_times
  Discover potential timestamps within the Windows Registry
  ☆19Updated 11 years ago
• shendo / netsink
  Network sinkhole for isolated malware analysis
  ☆40Updated 7 years ago
• jheise / threatcmd
  Cli interface to threatcrowd.org
  ☆19Updated 8 years ago
• praetorian-inc / dert
  DNS Enumeration and Reconnaissance Tool
  ☆36Updated 9 years ago
• funoverip / epowner
  McAfee ePolicy 0wner exploit code
  ☆46Updated 7 years ago
• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 5 years ago
• sghctoma / multipass
  A small wriiteup and a PoC tool about how to use SO_REUSADDR for firewall evasion
  ☆27Updated 9 years ago
• cylance / IDPanel
  Identify botnet panels with Ensembled Decision Trees
  ☆18Updated 9 years ago
• huntergregal / malwareSandbox
  A ready to deploy docker container for a fresh sandbox for on-the-fly malware analysis
  ☆42Updated 8 years ago
• 7h3rAm / flowinspect
  A Network Inspection Tool
  ☆82Updated 8 years ago
• honeynet / yapdns
  YAPDNS
  ☆39Updated 10 years ago
• sroberts / malwarehouse
  A warehouse for your malware
  ☆133Updated 12 years ago
• secureworks / pdfxpose
  A security tool for detecting suspicious PDF modifications commonly found in BEC
  ☆41Updated 9 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆44Updated 8 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• CIRCL / IP-ASN-history
  IP-ASN-history is a server software to store efficiently the history of BGP announces and quickly lookup IP addresses origins
  ☆45Updated 3 years ago
• m-dwyer / packer-malware
  ☆50Updated 9 years ago
• Neo23x0 / webshell-intel
  Scan web server for known webshell names and responses
  ☆50Updated 9 years ago
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆97Updated 11 years ago
• passivetotal / HT_infra
  VPS infrastructure found in HT dumps
  ☆26Updated 10 years ago