Basic Anomaly IDS capabilities with Python and Bro
☆105Feb 27, 2018Updated 8 years ago
Alternatives and similar repositories for bropy
Users that are interested in bropy are comparing it to the libraries listed below
Sorting:
- Command-line Interface for Binar.ly☆39Jan 13, 2017Updated 9 years ago
- Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers☆93Oct 15, 2017Updated 8 years ago
- Bro Intel Feed Linter☆26Aug 30, 2019Updated 6 years ago
- ☆12Aug 29, 2025Updated 6 months ago
- first commit☆23Feb 16, 2026Updated 2 weeks ago
- Comprehensive Pivoting Framework☆20Sep 20, 2016Updated 9 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 2 years ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆556May 9, 2023Updated 2 years ago
- Dockerfiles for NSM tools☆84Apr 14, 2017Updated 8 years ago
- A collection of PowerShell Modules for BloodHound/Empire Orchestration☆109Sep 26, 2017Updated 8 years ago
- Integrate Zeek with Alienvault OTX☆25Sep 11, 2020Updated 5 years ago
- Issues to consider when planning a red team exercise.☆616Aug 23, 2017Updated 8 years ago
- Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review☆196Oct 24, 2016Updated 9 years ago
- ☆11Mar 9, 2018Updated 7 years ago
- \ PowerAvails Powershell /☆10Jun 30, 2018Updated 7 years ago
- Bro/Zeek integration with osquery☆93Nov 2, 2020Updated 5 years ago
- A repository of silly scada and ICS knick knack tools.☆12Nov 7, 2017Updated 8 years ago
- My network monitoring solution and tools that go along with it.☆61Jan 21, 2022Updated 4 years ago
- Log4j Exploit Detection Logic for Zeek☆19Nov 25, 2025Updated 3 months ago
- Internet data acquisition☆152Jan 1, 2021Updated 5 years ago
- Open Source Office Malware Generation & Polymorphic Engine for Red Teams and QA testing☆95Apr 5, 2017Updated 8 years ago
- Scripts for Bro IDS and ELK Stack☆57Sep 2, 2015Updated 10 years ago
- Script for generating Bro intel files from pdf or html reports☆77Dec 7, 2015Updated 10 years ago
- docker based telnet honeypot☆80Feb 19, 2018Updated 8 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- Incident Response Forensic Framework☆611Nov 20, 2019Updated 6 years ago
- Make Windows LNK file with python (pylnk)☆64Jun 4, 2016Updated 9 years ago
- The Seeker of IOC☆131Oct 2, 2020Updated 5 years ago
- Easily write tests and fuzz many different programs.☆12Dec 13, 2022Updated 3 years ago
- Query 'GreyNoise Intelligence 'API' in R☆14Mar 5, 2020Updated 5 years ago
- Run a windows process with many inputs and catch exit codes☆14Jan 5, 2016Updated 10 years ago
- Bro analyzer that detects Google's QUIC protocol☆10Mar 2, 2021Updated 5 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Oct 31, 2018Updated 7 years ago
- SANS Hunting on the Cheap☆36Apr 12, 2016Updated 9 years ago
- My pentest cheat sheet☆16Apr 27, 2017Updated 8 years ago
- Harbinger Threat Intelligence☆83Dec 8, 2015Updated 10 years ago
- Async'ly gather unique usernames thru null SMB sessions and bruteforce them with 2 passwords☆51Oct 24, 2017Updated 8 years ago
- Tools to interact with a certificate transparency server☆23Aug 31, 2015Updated 10 years ago
- The plugin repository for Honeycomb, the honeypot framework by Cymmetria☆27Oct 19, 2023Updated 2 years ago