ivre / masscanned
Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.
☆119Updated this week
Alternatives and similar repositories for masscanned:
Users that are interested in masscanned are comparing it to the libraries listed below
- LZR quickly detects and fingerprints unexpected services running on unexpected ports.☆171Updated last month
- Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…☆140Updated last month
- Entropy scanner for Linux to detect packed or encrypted binaries related to malware. Finds malicious files and Linux processes and gives …☆153Updated 9 months ago
- 🚀 A lightweight, fast, and comprehensive solution for traffic analysis and intrusion detection.☆20Updated last week
- A honeypot for the Log4Shell vulnerability (CVE-2021-44228).☆92Updated 4 months ago
- Login Pages Database forms a knowledge base on login pages related to malicious activities (C2 panels, phishing kits...).☆39Updated 2 years ago
- Signature based honeypot detector tool written in Golang☆89Updated last week
- HTTP Headers Hashing (HHHash) is a technique used to create a fingerprint of an HTTP server based on the headers it returns.☆75Updated last year
- reveal origins behind reverse proxies & hidden services 👀 🧅 💻☆34Updated last year
- IOK (Indicator Of Kit) is an open source language and ruleset for detecting phishing threat actor tools and tactics☆177Updated this week
- A fast and secure multi protocol honeypot.☆316Updated 2 years ago
- 🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.☆261Updated 2 years ago
- Network Entity Reputation Database☆33Updated last month
- JA4TScan is an active TCP server fingerprinting tool.☆73Updated 7 months ago
- A repository for possible zgrab2 configurations☆25Updated 2 years ago
- Incident Response - Fast suspicious file finder☆241Updated 2 years ago
- A minimalistic cross-platform malware scanner with non-blocking realtime filesystem monitoring using YARA rules.☆224Updated 2 years ago
- Website crawler with YARA detection☆88Updated last year
- WhiteBeam: Transparent endpoint security☆100Updated 2 years ago
- A phishing kit collector for scavengers☆199Updated 2 months ago
- Suricata rules for network anomaly detection☆156Updated 2 weeks ago
- HoneyHTTPD is a Python-based web server honeypot/service imitation builder. Great for honeypots or faking HTTP services.☆46Updated 9 months ago
- Source code used at TweetFeed.live☆41Updated 2 years ago
- Hfinger - fingerprinting HTTP requests☆135Updated last year
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆72Updated 8 months ago
- ☆126Updated 3 weeks ago
- Visually inspect and force decode YARA and regex matches found in both binary and text data. With Colors.☆118Updated 3 months ago
- CLI tool to quickly and efficiently bulk-download entries from a Certificate Transparency log☆29Updated last month
- This repository contains a comprehensive list of over 30k dynamic DNS domains as of 2024. The list is provided for informational purposes…☆89Updated 3 months ago
- T-Pot Attack Map that follows ES honeypot events within T-Pot and parses IPs, ports and honeypot info to visualize events in real time.☆25Updated 4 months ago