integrating bro into yara
☆33Dec 9, 2014Updated 11 years ago
Alternatives and similar repositories for broyara
Users that are interested in broyara are comparing it to the libraries listed below
Sorting:
- Bro Intel Feed Linter☆26Aug 30, 2019Updated 6 years ago
- Useful scripts, rules etc. for use with YARA☆27Feb 12, 2021Updated 5 years ago
- ☆21Oct 16, 2021Updated 4 years ago
- Cli interface to threatcrowd.org☆20Jul 6, 2017Updated 8 years ago
- A collection of Bro scripts I've written☆41Jun 5, 2015Updated 10 years ago
- Bro Snippets☆21Nov 7, 2014Updated 11 years ago
- Extract files from network traffic with Zeek.☆102Mar 17, 2020Updated 5 years ago
- Bro stuff.☆12May 24, 2016Updated 9 years ago
- scan-detection policies for bro☆16Jan 16, 2025Updated last year
- Passive DNS collection using Zeek☆182Jun 2, 2023Updated 2 years ago
- Bit9 Platform☆20Jun 23, 2017Updated 8 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆33Aug 30, 2020Updated 5 years ago
- ☆72Nov 17, 2021Updated 4 years ago
- A script to create and assign SOP tasks into the cases☆20Aug 16, 2020Updated 5 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Oct 14, 2020Updated 5 years ago
- Various Bro scripts☆96Jul 8, 2016Updated 9 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49May 31, 2017Updated 8 years ago
- A REST API server for yara event notifications. Mapping file hashes to yara signatures in Elasticsearch for easy hash lookup or finding h…☆19May 12, 2015Updated 10 years ago
- A program that uses xapian to index the flat file databases used by nfdump or flow-tools☆36Mar 26, 2018Updated 7 years ago
- IoC's, PCRE's, YARA's etc☆23Mar 25, 2025Updated 11 months ago
- Collect and filter location information from social network services.☆11Jun 14, 2020Updated 5 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44May 9, 2024Updated last year
- A Python library for being a CND Batman....☆35Oct 29, 2015Updated 10 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Dec 24, 2019Updated 6 years ago
- Analyze binaries collected in VMware Carbon Black EDR against Yara rules.☆38Feb 23, 2026Updated last week
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Feb 20, 2017Updated 9 years ago
- Suricata Extreme Performance Tuning guide☆213Mar 15, 2018Updated 7 years ago
- Quantum Insert Backdoor POC☆11May 21, 2017Updated 8 years ago
- This is the C version of the StratosphereLinuxIPS. It is mainly used for integration with Snort and other IDSs.☆12Feb 15, 2017Updated 9 years ago
- Indicator of Compromise Mapping Service☆12Apr 15, 2014Updated 11 years ago
- ☆10Dec 28, 2015Updated 10 years ago
- AYY LMAO☆12Aug 27, 2015Updated 10 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆98Oct 21, 2014Updated 11 years ago
- ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…☆70Mar 9, 2015Updated 10 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆44Jun 6, 2019Updated 6 years ago
- Indicator Extractor☆141Jul 14, 2018Updated 7 years ago
- A Python library to interface with a cuckoo-modified instance☆23Oct 31, 2016Updated 9 years ago
- Sublime Malware Research Tool☆66Oct 28, 2024Updated last year
- Snort/Suricata DAQ module with DPDK patch☆11Apr 10, 2024Updated last year