corelight / ripple20Links
A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.
☆33Updated 3 years ago
Alternatives and similar repositories for ripple20
Users that are interested in ripple20 are comparing it to the libraries listed below
Sorting:
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆158Updated 5 months ago
- Historical list of {Cobalt Strike,NanoHTTPD} servers☆121Updated 6 years ago
- Simple web shell scanner written in Golang.☆90Updated 6 years ago
- ☆55Updated last year
- ☆35Updated last year
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated 2 years ago
- Explore Indicators of Compromise Automatically☆96Updated 5 years ago
- Bro integration with osquery☆15Updated 2 years ago
- Black Hat EU 2018 - Don't Eat Spaghetti with a Spoon - An Analysis of the Practical Value of Threat Intelligence☆22Updated 6 years ago
- ☆53Updated 6 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- Malicious actors often reuse code to deploy their malware, phishing website or CNC server. As a result, similiaries can be found on URLs …☆75Updated last year
- CVE2020-0796 SMBv3 RCE☆61Updated 5 years ago
- ☆82Updated 4 years ago
- A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.☆52Updated 6 years ago
- Network assessment tool for various UDP Services covering both IPv4 and IPv6 protocols☆115Updated 5 years ago
- Malware Sinkhole List in various formats☆102Updated 3 years ago
- collector/runner☆65Updated 2 weeks ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆107Updated 4 years ago
- Pulse Secure SSL VPN pre-auth file reading☆50Updated 6 years ago
- Real Time Threat Monitoring Tool☆112Updated 2 years ago
- Open source tools, libraries, and datasets related to the runZero product and associated research☆121Updated last month
- Detect webshells dropped on Microsoft Exchange servers exploited through "proxylogon" group of vulnerabilites (CVE-2021-26855, CVE-2021-2…☆98Updated 4 years ago
- ATT&CK Evaluations website (DEPRECATED)☆59Updated 4 years ago
- Python script to detect bluekeep vulnerability (CVE-2019-0708) with TLS/SSL and x509 support☆27Updated 6 years ago
- SNIcat☆127Updated 4 years ago
- A CALDERA plugin☆69Updated 3 weeks ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆79Updated 7 years ago
- Python 3 library to request https://crt.sh/☆34Updated 4 months ago