MozDef: The Mozilla Defense Platform
☆68Feb 19, 2020Updated 6 years ago
Alternatives and similar repositories for MozDef
Users that are interested in MozDef are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A network sniffer that logs all DNS server replies for use in a passive DNS setup☆1,737May 28, 2024Updated last year
- CIF v3 -- the fastest way to consume threat intelligence☆183Apr 20, 2023Updated 2 years ago
- Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon☆44Jan 31, 2021Updated 5 years ago
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆7,327Updated this week
- An agent that performs user actions on a workstation☆13Jan 22, 2018Updated 8 years ago
- Integration between SIEMs and TAXII services☆10Mar 2, 2023Updated 3 years ago
- shARP_2.0 is an updated version for shARP with more options for better performance.☆12Oct 12, 2017Updated 8 years ago
- ☆147Mar 22, 2022Updated 4 years ago
- OSSEC Decoder & Rulesets for Sysmon Events☆15Jul 23, 2015Updated 10 years ago
- ⚠️ ARCHIVED**: This repository is no longer actively maintained. All Sigma rules are now managed and available in SIEM Rules☆12Updated this week
- DEPRECATED - MozDef: Mozilla Enterprise Defense Platform☆2,167Nov 2, 2021Updated 4 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,928May 3, 2022Updated 3 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆88Mar 1, 2019Updated 7 years ago
- Repo of python/bash scripts for identifying IoC's in threat feed and other online tools☆26Jul 27, 2020Updated 5 years ago
- FIles and guides related to using Elasticstack as a SIEM☆12May 16, 2020Updated 5 years ago
- OS X Auditor is a free Mac OS X computer forensics tool☆3,135Jul 27, 2020Updated 5 years ago
- Modified edition of cuckoo☆18Feb 14, 2018Updated 8 years ago
- Set of PoC for exploits for QRadar SIEM☆15Jan 14, 2018Updated 8 years ago
- eXpandable Open Research on Cyber Information Security Management☆23May 10, 2020Updated 5 years ago
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,027Mar 14, 2026Updated last week
- Mirror network traffic from one interface to another on Windows☆25Feb 26, 2020Updated 6 years ago
- uses keywords from alert logs to send SMS☆24Nov 20, 2015Updated 10 years ago
- Passive Network Audit Framework☆32May 17, 2018Updated 7 years ago
- 之前做系统,要对接AWVS11,写了一个可以python3的调用文档,感兴趣的可以看看☆11Dec 6, 2017Updated 8 years ago
- Aktaion: Open Source ML tool and data samples for Exploit and Phishing Research☆143Mar 26, 2019Updated 6 years ago
- Stephen Wylie's machine learning presentations☆25Oct 30, 2020Updated 5 years ago
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆7,525Updated this week
- Reading List for CSIRT Team Members☆17Oct 21, 2019Updated 6 years ago
- Security information and event management, masters's diploma☆10Aug 3, 2015Updated 10 years ago
- A set of Bash scripts that allows you to repeatably collect and compare baseline audit data from Linux and Windows systems☆20Oct 19, 2013Updated 12 years ago
- \ PowerAvails Powershell /☆10Jun 30, 2018Updated 7 years ago
- DEPRECATED - USE v3 (bearded-avenger)☆229Jan 16, 2018Updated 8 years ago
- A collection of scripts to initialize a windows VM to run all the malwares!☆107Apr 3, 2020Updated 5 years ago
- Understanding ATT&CK Matrix for Enterprise☆79May 16, 2018Updated 7 years ago
- ☆13Jun 12, 2025Updated 9 months ago
- 收集物联网安全相关资料☆42Nov 24, 2016Updated 9 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆98May 20, 2016Updated 9 years ago
- 元豚科技 - 基于日志安全分析做切入,做最好用的「云原生安全运维工作台」☆303May 23, 2024Updated last year
- Mirror of https://github.com/zeek/zeek☆174Mar 24, 2023Updated 3 years ago