corelight / ripple20
A Zeek package for the passive detection of "Ripple20" vulnerabilities in the Treck TCP/IP stack.
☆33Updated 2 years ago
Alternatives and similar repositories for ripple20:
Users that are interested in ripple20 are comparing it to the libraries listed below
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- Bro integration with osquery☆15Updated last year
- Cybersecurity Incidents Mind Maps☆33Updated 3 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆39Updated last year
- ☆35Updated last year
- Joystick is a tool that gives you the ability to transform the ATT&CK Evaluations data into concise views that brings forward the nuances…☆64Updated last year
- Suricata rule and intel index☆31Updated 3 months ago
- Black Hat EU 2018 - Don't Eat Spaghetti with a Spoon - An Analysis of the Practical Value of Threat Intelligence☆22Updated 6 years ago
- ☆53Updated 6 years ago
- Historical list of {Cobalt Strike,NanoHTTPD} servers☆122Updated 5 years ago
- The Fastest way to consume Threat Intel☆25Updated 2 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆151Updated last year
- BloodHound Cypher Queries Ported to a Jupyter Notebook☆53Updated 4 years ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Zeek package to detect Zerologon☆11Updated 3 years ago
- Pulse Secure SSL VPN pre-auth file reading☆50Updated 5 years ago
- POC for utilizing wikipedia API for Command and Control☆29Updated 2 years ago
- A tool to assess data quality, built on top of the awesome OSSEM.☆76Updated 2 years ago
- CVE2020-0796 SMBv3 RCE☆61Updated 4 years ago
- Tweettioc Splunk App☆20Updated 4 years ago
- A low interaction honeypot for the Cisco ASA component capable of detecting CVE-2018-0101, a DoS and remote code execution vulnerability.☆51Updated 6 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆100Updated 3 years ago
- Zeek package to generate a SMB client fingerprint☆27Updated 4 years ago
- ATT&CK Evaluations website (DEPRECATED)☆59Updated 3 years ago
- Community maintained list of most popular HIPS service and process names on a Windows Platform.☆43Updated 2 years ago
- Detect kerberos attacks in pcap files☆28Updated 9 years ago
- Bluehat 2018 Graphs for Security Workshop☆42Updated 6 years ago
- A Yara Lua output script for Suricata☆19Updated 5 years ago
- Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation☆63Updated 4 years ago