gamelinux / passivedns

Related projects ⓘ

Alternatives and complementary repositories for passivedns

• mozilla / MozDef
  DEPRECATED - MozDef: Mozilla Enterprise Defense Platform
  ☆2,167Updated 3 years ago
• mozilla / mig
  Distributed & real time digital forensics at the speed of the cloud
  ☆1,206Updated 5 years ago
• AlienVault-Labs / AlienVaultLabs
  Alienvault Labs Projects Random Stuff
  ☆512Updated 2 years ago
• tomchop / malcom
  Malcom - Malware Communications Analyzer
  ☆1,155Updated 6 years ago
• ossec / ossec-hids
  OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…
  ☆4,514Updated 5 months ago
• sleuthkit / sleuthkit
  The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…
  ☆2,632Updated this week
• google / grr
  GRR Rapid Response: remote live forensics for incident response
  ☆4,785Updated this week
• toolswatch / vFeed
  The Correlated CVE Vulnerability And Threat Intelligence Database API
  ☆933Updated 3 years ago
• viper-framework / viper
  Binary analysis and management framework
  ☆1,539Updated last year
• zeek / zeek
  Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
  ☆6,473Updated this week
• pwnlandia / mhn
  Modern Honey Network
  ☆2,436Updated 6 months ago
• etsy / MIDAS
  Mac Intrusion Detection Analysis System
  ☆834Updated 9 years ago
• shirkdog / pulledpork
  Pulled Pork for Snort and Suricata rule management (from Google code)
  ☆422Updated 3 years ago
• jipegit / OSXAuditor
  OS X Auditor is a free Mac OS X computer forensics tool
  ☆3,128Updated 4 years ago
• omriher / CapTipper
  Malicious HTTP traffic explorer
  ☆711Updated last year
• yeti-platform / yeti
  Your Everyday Threat Intelligence
  ☆1,752Updated this week
• arkime / arkime
  Arkime is an open source, large scale, full packet capturing, indexing, and database system.
  ☆6,341Updated this week
• StamusNetworks / scirius
  Scirius is a web application for Suricata ruleset management and threat hunting.
  ☆635Updated last week
• cisco / joy
  A package for capturing and analyzing network flow data and intraflow data, for network research, forensics, and security monitoring.
  ☆1,308Updated 7 months ago
• google / rekall
  Rekall Memory Forensic Framework
  ☆1,925Updated 4 years ago
• bfuzzy / auditd-attack
  A Linux Auditd rule set mapped to MITRE's Attack Framework
  ☆778Updated 4 years ago
• mlsecproject / combine
  Tool to gather Threat Intelligence indicators from publicly available sources
  ☆655Updated 5 years ago
• certsocietegenerale / FIR
  Fast Incident Response
  ☆1,740Updated this week
• netsniff-ng / netsniff-ng
  A Swiss army knife for your daily Linux network plumbing.
  ☆1,234Updated last week
• mandiant / flare-fakenet-ng
  FakeNet-NG - Next Generation Dynamic Network Analysis Tool
  ☆1,806Updated this week
• ptresearch / AttackDetection
  Attack Detection
  ☆1,340Updated 2 years ago
• biggiesmallsAG / nightHawkResponse
  Incident Response Forensic Framework
  ☆598Updated 5 years ago
• lmco / laikaboss
  Laika BOSS: Object Scanning System
  ☆740Updated last year
• HASecuritySolutions / VulnWhisperer
  Create actionable data from your Vulnerability Scans
  ☆1,357Updated last year
• honeytrap / honeytrap
  Advanced Honeypot framework.
  ☆1,226Updated last year