hackertarget / pcap-did-what
Analyze pcaps with Zeek and a Grafana Dashboard
☆161Updated 5 months ago
Related projects ⓘ
Alternatives and complementary repositories for pcap-did-what
- Respotter is a Responder honeypot! Catch attackers as soon as they spin up Responder in your environment.☆166Updated 2 months ago
- An automated Breach and Attack Simulation lab with terraform. Built for IaC stability, consistency, and speed.☆165Updated 4 months ago
- A tool collection for filtering and visualizing logon events. Designed to help answering the "Cotton Eye Joe" question (Where did you com…☆160Updated this week
- God Mode Detection Rules☆130Updated 3 months ago
- Canary Detection☆160Updated 7 months ago
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆189Updated last month
- Dredging up secrets from the depths of the file system☆116Updated this week
- VirtualGHOST Detection Tool☆87Updated 5 months ago
- ☆67Updated 3 weeks ago
- Segugio allows the execution and tracking of critical steps in the malware detonation process, from clicking on the first stage to extrac…☆138Updated last month
- An ADCS honeypot to catch attackers in your internal network.☆222Updated 4 months ago
- Halberd : Multi-Cloud Attack Tool☆193Updated this week
- Okta Verify and Okta FastPass Abuse Tool☆288Updated 2 months ago
- ☆70Updated 2 weeks ago
- LOLESXi is a curated compilation of binaries/scripts available in VMware ESXi that are were used to by adversaries in their intrusions. T…☆104Updated 3 weeks ago
- Convert a variety of log formats to CSV while enriching detected IPs with Geolocation, ASN, DNS, WhoIs, Shodan InternetDB and Threat Indi…☆98Updated 3 weeks ago
- A collection of companies that disclose adversary TTPs after they have been breached☆239Updated 6 months ago
- LDAP Watchdog: A real-time linux-compatible LDAP monitoring tool for detecting directory changes, providing visibility into additions, mo…☆170Updated 9 months ago
- Simple Workspace Attack Tool (SWAT) is a tool for simulating malicious behavior against Google Workspace in reference to the MITRE ATT&CK…☆161Updated last month
- Living Off Security Tools☆37Updated 2 weeks ago
- The purpose of this project is to publish and maintain the deployment PowerShell script that automates deployments for Active Directory C…☆213Updated 11 months ago
- SubSnipe is a tool designed to help find subdomains that are vulnerable to takeover.☆71Updated 2 weeks ago
- An Nmap XSL implementation with Bootstrap. Allows Nmap XML port scan results to be converted into beautiful HTML reports.☆56Updated 3 months ago
- A web application that allows the users to check whether their SPF, DMARC and DKIM configuration is set up correctly.☆134Updated this week
- Automation tool for Windows Deception Host Burn-In☆76Updated 4 months ago
- This page is a result of the ongoing hands-on research around advanced Linux attacks, detection and forensics techniques and tools.☆124Updated last year
- Leveraging MISP indicators via a pDNS-based infrastructure as a poor man’s SOC.☆49Updated 3 weeks ago
- Advanced Bash script designed for conducting digital forensics on Linux systems☆131Updated 7 months ago
- Records an executable's network activity into a Full Packet Capture file (.pcap) and much more.☆211Updated this week
- A repository of advice and guides to share with friends and family who are concerned about their safety during online activities and the …☆97Updated 8 months ago