Alternatives and similar repositories for pcap-did-what:

Users that are interested in pcap-did-what are comparing it to the libraries listed below

• lawndoc / Respotter
  Respotter is a Responder honeypot. Detect Responder in your environment as soon as it's spun up.
  ☆192Updated 2 months ago
• Neo23x0 / god-mode-rules
  God Mode Detection Rules
  ☆134Updated 7 months ago
• splunk / DECEIVE
  DECeption with Evaluative Integrated Validation Engine (DECEIVE): Let an LLM do all the hard honeypot work!
  ☆227Updated last week
• CERN-CERT / pDNSSOC
  Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.
  ☆51Updated 2 months ago
• iknowjason / AutomatedEmulation
  An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.
  ☆184Updated 9 months ago
• activecm / rita
  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…
  ☆270Updated 2 weeks ago
• CrowdStrike / VirtualGHOST
  VirtualGHOST Detection Tool
  ☆90Updated 10 months ago
• krdmnbrk / AttackRuleMap
  Mapping of open-source detection rules and atomic tests.
  ☆159Updated 2 months ago
• MegaManSec / LDAP-Monitoring-Watchdog
  LDAP Watchdog: A real-time linux-compatible LDAP monitoring tool for detecting directory changes, providing visibility into additions, mo…
  ☆185Updated last year
• AlbinoGazelle / esxi-testing-toolkit
  🧰 ESXi Testing Tookit is a command-line utility designed to help security teams test ESXi detections.
  ☆71Updated 2 months ago
• grahamhelton / dredge
  Dredging up secrets from the depths of the file system
  ☆125Updated 4 months ago
• huntresslabs / rogueapps
  When good OAuth apps go rogue. Documents observed OAuth application tradecraft
  ☆72Updated last week
• vectra-ai-research / Halberd
  Halberd : Multi-Cloud Attack Platform
  ☆256Updated 3 weeks ago
• cgosec / Blauhaunt
  A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…
  ☆167Updated last month
• vm32 / Digital-Forensics-Script-for-Linux
  Advanced Bash script designed for conducting digital forensics on Linux systems
  ☆141Updated 11 months ago
• CERT-Polska / mailgoose
  A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.
  ☆141Updated 3 weeks ago
• HackingLZ / IndicatorOfCanary
  Canary Detection
  ☆163Updated 11 months ago
• joeavanzato / LogBoost
  Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…
  ☆101Updated 5 months ago
• MalBeacon / what-is-this-stealer
  A repository of credential stealer formats
  ☆204Updated this week
• securityjoes / ForensicMiner
  A really good DFIR automation for collecting and analyzing evidence designed for cybersecurity professionals.
  ☆153Updated 10 months ago
• M00NLIG7 / ChopChopGo
  Rapidly Search and Hunt through Linux Forensics Artifacts
  ☆188Updated last year
• arsolutioner / ExtensionHound
  A security analysis tool that identifies DNS queries made by browser extensions, empowering security teams to detect and investigate susp…
  ☆160Updated last month
• referefref / honeydet
  Signature based honeypot detector tool written in Golang
  ☆89Updated last week
• AirbusProtect / AD-Canaries
  The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…
  ☆250Updated last year
• ine-labs / ThreatSeeker
  ThreatSeeker: Threat Hunting via Windows Event Logs
  ☆120Updated last year
• BushidoUK / Breach-Report-Collection
  A collection of companies that disclose adversary TTPs after they have been breached
  ☆244Updated 11 months ago
• cisagov / parsnip
  ☆70Updated 2 months ago
• tsale / EDR-Telemetry-Website
  ☆74Updated last week
• NotLoBi / NotLoBi
  COMPLETE OSINT CHEAT-SHEET
  ☆82Updated last month
• adhdproject / spidertrap
  Traps web spiders
  ☆70Updated 4 years ago