Passive Real-time Asset Detection System
☆249May 28, 2024Updated last year
Alternatives and similar repositories for prads
Users that are interested in prads are comparing it to the libraries listed below
Sorting:
- Network Security Monitoring Framework☆48Oct 19, 2012Updated 13 years ago
- scan-detection policies for bro☆16Jan 16, 2025Updated last year
- brocon-15 scripts☆13Apr 3, 2017Updated 8 years ago
- Connection Tracker is a passive network connection tracker for profiling, history, auditing and network discovery.☆47Aug 6, 2017Updated 8 years ago
- Collecting & Hunting for IOCs with gusto and style☆117Aug 9, 2018Updated 7 years ago
- NTFSx is a tool for extracting files from an NTFS filesystem that are otherwise inaccessible.☆14Jul 26, 2013Updated 12 years ago
- Detect Phishing with Bro IDS☆18Feb 1, 2017Updated 9 years ago
- An analytical framework for network traffic and behavioral analytics☆456Dec 7, 2022Updated 3 years ago
- A network sniffer that logs all DNS server replies for use in a passive DNS setup☆1,736May 28, 2024Updated last year
- ☆12Dec 16, 2016Updated 9 years ago
- A Network Inspection Tool☆82Oct 13, 2017Updated 8 years ago
- Bluewall is a firewall framework designed for offensive and defensive cyber professionals.☆106Apr 7, 2019Updated 6 years ago
- (OBSOLETE) Plugins for Bro��☆53Sep 13, 2017Updated 8 years ago
- SOC Workflow App helps Security Analysts and Threat Hunters explore suspicious events, look into raw events arriving at the Elastic Stack…☆94Aug 30, 2022Updated 3 years ago
- Add POST body excerpt to Bro's HTTP log☆14Dec 10, 2025Updated 2 months ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Oct 31, 2018Updated 7 years ago
- Analysis scripts for the Bro Intrusion Detection System☆59Feb 26, 2014Updated 12 years ago
- Help summarize a PCAP file☆33Dec 27, 2011Updated 14 years ago
- DHCP fingerprints database and related tools☆19Nov 14, 2014Updated 11 years ago
- Bro-IDS scripts☆50Sep 12, 2016Updated 9 years ago
- Hogzilla is an Intrusion Detection System (IDS) supported by Snort, Apache Spark, HBase and libnDPI, which provides Network Anomaly Detec…☆28Apr 18, 2018Updated 7 years ago
- Malware/IOC ingestion and processing engine☆109Nov 20, 2018Updated 7 years ago
- Proof of concept implementation of a cyber threat intelligence and incident handling platform☆11Feb 10, 2023Updated 3 years ago
- Barnyard2 is a dedicated spooler for Snort's unified2 binary output format.☆352Apr 11, 2024Updated last year
- DEPRECATED - USE v3 (bearded-avenger)☆229Jan 16, 2018Updated 8 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆511Feb 27, 2026Updated last week
- A framework for receiving and redistributing abuse feeds☆125Sep 27, 2019Updated 6 years ago
- ☆77Jun 25, 2019Updated 6 years ago
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆545May 1, 2025Updated 10 months ago
- Modular file scanning/analysis framework☆622Oct 8, 2019Updated 6 years ago
- A network packet forensics tool for SSH☆254Feb 15, 2021Updated 5 years ago
- A Bro package to identify connections that are bursting (lots of data and transferring quickly).☆13Oct 15, 2020Updated 5 years ago
- Network Defender Toolkit☆18Jun 11, 2013Updated 12 years ago
- OSSEC Documentation☆138Feb 3, 2026Updated last month
- Collecting & Hunting for IOCs with gusto and style☆240Aug 1, 2021Updated 4 years ago
- Connectors for the Zeek NetControl framework☆19Feb 4, 2025Updated last year
- Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.☆20Oct 24, 2018Updated 7 years ago
- The Compressed Pcap Packet Indexing Program☆29Nov 10, 2015Updated 10 years ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,515Jan 12, 2026Updated last month