dnlongen / Snort-DNS
Snort rules to detect local malware, phishing, and adult content by inspecting DNS responses from OpenDNS
☆52Updated 8 years ago
Alternatives and similar repositories for Snort-DNS:
Users that are interested in Snort-DNS are comparing it to the libraries listed below
- Maltego transforms for the ThreatCrowd search API☆49Updated 7 years ago
- Transforms for the AlienVault OTX service☆39Updated 8 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- Scripts for Bro IDS and ELK Stack☆57Updated 9 years ago
- Compare multiple log formats against malware reputation lists.☆88Updated 7 years ago
- Use OpenDNS's investigate API to find newly observed domains which match a brand or string☆17Updated 8 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- ☆17Updated 7 years ago
- Enrich a host with open source security information☆27Updated 9 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago
- Harbinger Threat Intelligence☆83Updated 9 years ago
- Modular tool to test exfiltration techniques.☆37Updated 8 years ago
- Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addres…☆66Updated 7 years ago
- MS17-010 Windows SMB RCE -- Full subnet scanner☆24Updated 7 years ago
- Windows PowerShell domain scanning tool☆54Updated 9 years ago
- Core elements of the Modern Honey Network implemented in Docker☆34Updated 3 years ago
- Traceroute improved wrapper for CSIRT and CERT operators☆38Updated 7 months ago
- brocon-15 scripts☆13Updated 8 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Credential Phish Analysis and Automation☆96Updated 6 years ago
- A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…☆81Updated 9 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- Smoking Linux Every Day!☆54Updated 4 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- cuckoo-1.1 fork with suricata/moloch/clamav and other goodies☆23Updated 10 years ago
- ☆38Updated 6 years ago
- A security tool for detecting suspicious PDF modifications commonly found in BEC☆41Updated 8 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆80Updated 9 years ago