defensivedepth / WinTAP
Mirror network traffic from one interface to another on Windows
☆25Updated 5 years ago
Alternatives and similar repositories for WinTAP:
Users that are interested in WinTAP are comparing it to the libraries listed below
- ☆14Updated last year
- ☆20Updated 4 years ago
- A virtual MediaWiki development environment, built on Vagrant, VirtualBox, and Puppet.☆16Updated 8 years ago
- Passive DNS V2☆61Updated 11 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 8 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- IP-ASN-history is a server software to store efficiently the history of BGP announces and quickly lookup IP addresses origins☆45Updated 3 years ago
- ☆15Updated 7 years ago
- API Tools☆27Updated 9 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆45Updated 5 years ago
- A collection of Yara rules I have created so far☆16Updated 4 years ago
- An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk☆23Updated 6 years ago
- Detect malicious domain, Blablablablabla☆26Updated 8 years ago
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆31Updated 10 months ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Code, commands, and chatter about Threat Hunting.☆35Updated 5 years ago
- CertWatcher is a new take on monitoring for phishing sites. It is meant to be a set and forget service that will send you a daily report …☆11Updated 4 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- Malice Yara Plugin☆30Updated 5 years ago
- Event Log Analysis Tools☆29Updated 8 years ago
- This is the C version of the StratosphereLinuxIPS. It is mainly used for integration with Snort and other IDSs.☆12Updated 8 years ago
- dnshjmon is a free tool to monitor public DNS records and report hijacks☆91Updated 11 years ago
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 7 years ago
- Modern Honey Net set-up and configure scripts to automate multiple installs.☆8Updated 7 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Updated 4 years ago
- scan-detection policies for bro☆16Updated 3 months ago
- intel amt honeypot☆18Updated 7 years ago
- Automatically enumerate and fingerprint SD-WAN nodes on the internet☆50Updated 3 years ago