fatemabw / kydLinks
DHCP Fingerprinting
☆29Updated 4 years ago
Alternatives and similar repositories for kyd
Users that are interested in kyd are comparing it to the libraries listed below
Sorting:
- Zeek package to generate a SMB client fingerprint☆27Updated 5 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- Zeek package to detect Zerologon☆11Updated 3 years ago
- Check IOC provided by a MISP instance on Suricata events☆18Updated 6 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- ☆18Updated 10 months ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Updated 2 years ago
- S4A main repository. SaltStack states, install script and build scripts☆27Updated last month
- ☆16Updated last year
- This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.☆35Updated 6 years ago
- CyCAT.org taxonomies☆15Updated 4 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- SightingDB is a database for Sightings☆22Updated 2 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 8 years ago
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.☆90Updated last year
- CLI tool for testing Office documents with macros using MaliciousMacroBot☆11Updated last year
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆75Updated 3 weeks ago
- Validates yara rules and tries to repair the broken ones.☆40Updated 5 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated last year
- Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists☆33Updated 2 weeks ago
- A tool to help malware analysts signature unique parts of RTF documents☆29Updated 9 months ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- A collection of Indicators of Compromise (IoCs), most aligning with samples derived from the signatures in the YARA-Signatures repo☆30Updated 5 years ago
- ☆15Updated 7 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- YAFRA is a semi-automated framework for analyzing and representing reports about IT Security incidents.☆27Updated 3 years ago
- CyCAT.org API back-end server including crawlers☆29Updated 2 years ago