defensivedepth / WinTAPLinks
Mirror network traffic from one interface to another on Windows
☆25Updated 5 years ago
Alternatives and similar repositories for WinTAP
Users that are interested in WinTAP are comparing it to the libraries listed below
Sorting:
- Endpoint monitoring stack.☆19Updated 9 years ago
- Volatility memory forensics plugin for extracting Windows DNS Cache☆29Updated 8 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆45Updated 6 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆73Updated 8 years ago
- Event Log Analysis Tools☆29Updated 8 years ago
- ☆14Updated last year
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆31Updated last year
- OpenFlow Honeypot☆24Updated 12 years ago
- Network detector for Winnti malware☆20Updated 7 years ago
- SQL scripts for querying event logs☆21Updated 8 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- ☆20Updated 5 years ago
- Passive DNS V2☆60Updated 11 years ago
- Work Fast With the pattern matching swiss knife for malware researchers.☆38Updated 9 years ago
- PS / Bash / Python / Other scripts For FUN!☆55Updated 6 months ago
- Scan web server for known webshell names and responses☆50Updated 8 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆44Updated 3 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Updated 2 years ago
- The Official Github Repository of Daemonlogger☆22Updated 4 years ago
- Detect Phishing with Bro IDS☆19Updated 8 years ago
- An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk☆23Updated 7 years ago
- Scripts to detect Fast-Flux and DGA using DNS query responses☆43Updated 8 years ago
- Carve Windows Prefetch files from arbitrary binary data☆16Updated 8 years ago
- Sysmon config for both Windows and Linux Devices. Windows one is a bit dated☆56Updated last year
- Win32 utility for auditing TCP connections☆56Updated 5 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 5 years ago
- This repository contains tools used by 401trg.☆20Updated 4 years ago
- Passive Network Audit Framework☆32Updated 7 years ago
- Basic demo for Hidden Treasure talk.☆49Updated 7 years ago