ivre / masscanned
Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.
☆119Updated last week
Alternatives and similar repositories for masscanned:
Users that are interested in masscanned are comparing it to the libraries listed below
- Signature based honeypot detector tool written in Golang☆89Updated last week
- LZR quickly detects and fingerprints unexpected services running on unexpected ports.☆171Updated last month
- Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…☆140Updated last month
- Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …☆153Updated 9 months ago
- Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).☆39Updated 2 years ago
- WhiteBeam: Transparent endpoint security☆100Updated 2 years ago
- IOK (Indicator Of Kit) is an open source language and ruleset for detecting phishing threat actor tools and tactics☆177Updated this week
- A minimalistic cross-platform malware scanner with non-blocking realtime filesystem monitoring using YARA rules.☆224Updated 2 years ago
- Honeyscanner: A vulnerability analyzer for honeypots☆37Updated 7 months ago
- Suricata rules for network anomaly detection☆156Updated 2 weeks ago
- reveal origins behind reverse proxies & hidden services 👀 🧅 💻☆34Updated last year
- ☆126Updated last month
- SNIcat☆126Updated 3 years ago
- HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.☆75Updated last year
- This repository contains a comprehensive list of over 30k dynamic DNS domains as of 2024. The list is provided for informational purposes…☆89Updated 3 months ago
- LOKI2 - Simple IOC and YARA Scanner☆88Updated 8 months ago
- Hfinger - fingerprinting HTTP requests☆135Updated last year
- Web Application for domain name monitoring / alerting☆63Updated 8 months ago
- Agile Sandbox for analyzing Windows, Linux and macOS malware and execution behaviors☆67Updated last year
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆69Updated 2 months ago
- Website crawler with YARA detection☆88Updated last year
- Threat Intel Platform for T-POTs☆144Updated 2 weeks ago
- 🚀 A lightweight, fast, and comprehensive solution for traffic analysis and intrusion detection.☆20Updated last week
- The open ransomware payment tracker☆93Updated 5 months ago
- SubCrawl is a modular framework for discovering open directories, identifying unique content through signatures and organizing the data w…☆146Updated last year
- JA4TScan is an active TCP server fingerprinting tool.☆73Updated 7 months ago
- A honeypot for the Log4Shell vulnerability (CVE-2021-44228).☆92Updated 4 months ago
- Website for ail-typo-squatting library☆58Updated 10 months ago
- misp-guard is a mitmproxy addon that inspects and blocks outgoing events to external MISP instances via sync mechanisms (pull/push) based…☆14Updated last month
- NIST-based CVE lookup store and API powered by Rust.☆129Updated 2 months ago