DHCP Fingerprinting
☆31Dec 15, 2020Updated 5 years ago
Alternatives and similar repositories for kyd
Users that are interested in kyd are comparing it to the libraries listed below
Sorting:
- This module detects HTTP requests that are non RFC compliant and used for smuggling☆12Mar 16, 2023Updated 2 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Apr 21, 2020Updated 5 years ago
- Zeek package for detecting the Eternal* exploits and a set of SMBv1 protocol violations.☆19Aug 21, 2025Updated 6 months ago
- ☆21Oct 16, 2021Updated 4 years ago
- Zeek package to generate a SMB client fingerprint☆27May 5, 2020Updated 5 years ago
- Validate if afpacket PACKET_FANOUT_HASH is working properly☆25May 19, 2022Updated 3 years ago
- Extensions for Zeek's Intelligence Framework.☆11Mar 1, 2022Updated 4 years ago
- a-ray-grass is a yara module that provides support for DCSO-format bloom filters in yara. In the context of hashlookup, it allows quickly…☆14Aug 19, 2022Updated 3 years ago
- A RESTful API frontend for Stenographer☆54Dec 7, 2022Updated 3 years ago
- line based tcp load balancing proxy.☆14Jun 18, 2024Updated last year
- CVE-2023-20198 PoC (!)☆11Oct 17, 2023Updated 2 years ago
- Automatically exported from code.google.com/p/dumbpig☆12Sep 5, 2018Updated 7 years ago
- This repository has been archived in favor of https://github.com/idaholab/Malcolm-Test-Artifacts☆37Dec 11, 2024Updated last year
- pocket guide for core detection engineering concepts☆31May 8, 2023Updated 2 years ago
- Repository to provide files related to our blog articles.☆16May 26, 2025Updated 9 months ago
- provides a Suricata Eve output for Kafka with Suricate Eve plugin☆15Nov 25, 2021Updated 4 years ago
- Cyber threat intelligence crates for Rust☆16Jan 22, 2024Updated 2 years ago
- A Python parser for Rich Headers☆15Jun 2, 2015Updated 10 years ago
- Full packet capture with flow cutoff, rotation, and compression☆15Sep 18, 2018Updated 7 years ago
- Go implementation of the Community ID flow hashing standard☆21Apr 17, 2025Updated 10 months ago
- Set your logs on fire with Emoji-🔥!☆15Oct 9, 2020Updated 5 years ago
- Private Search Set (PSS) is an extension to standard Bloom filter or a standalone hash file to describe and share private set.☆16Jan 10, 2025Updated last year
- server for indexing and querying passive DNS observations☆50Jan 12, 2026Updated last month
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 2 years ago
- ☆18Dec 20, 2024Updated last year
- A co-simulation framework for reasearching cybersecurity in power grids.☆26Sep 24, 2025Updated 5 months ago
- High resolution traffic measurement tool for Linux written in Go☆19Jul 28, 2019Updated 6 years ago
- ☆16Feb 13, 2020Updated 6 years ago
- This repository contains sample log data that were collected after running adversary simulations in Microsoft 365☆24Oct 9, 2024Updated last year
- ☆24Aug 25, 2015Updated 10 years ago
- A tools to work on suricata stats.log file.☆29Oct 14, 2015Updated 10 years ago
- The Security Analyst’s Guide to Suricata☆61Apr 28, 2025Updated 10 months ago
- pCraft is a PCAP Crafter, which creates a PCAP from an AMI scenario.☆92Apr 11, 2024Updated last year
- How to Zeek Sysmon Logs!☆103Feb 12, 2022Updated 4 years ago
- Top-K elephant flows finding using HeavyKeeper accurate algorithm☆31Jan 18, 2023Updated 3 years ago
- ☆26Apr 5, 2020Updated 5 years ago
- Zeek package for tracking long connections to report them before they have completed.☆31Nov 25, 2025Updated 3 months ago
- Bro Intel Feed Linter�☆26Aug 30, 2019Updated 6 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆120Apr 14, 2021Updated 4 years ago