joesecurity / Joe-Sandbox-BroLinks
JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox
☆45Updated 6 years ago
Alternatives and similar repositories for Joe-Sandbox-Bro
Users that are interested in Joe-Sandbox-Bro are comparing it to the libraries listed below
Sorting:
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Malware/IOC ingestion and processing engine☆105Updated 6 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- An ICAP Server with yara scanner for URL and content.☆59Updated 5 months ago
- ☆22Updated 7 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 4 years ago
- ☆27Updated 7 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆72Updated 6 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 4 years ago
- Passive DNS V2☆60Updated 11 years ago
- Cyber Intel Management☆48Updated 7 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching☆33Updated 9 years ago
- Sorta reverse implementation of ShoVAT - Also includes NMAP banner regex results☆17Updated 6 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- Tom's Honey Pot as seen in Applied Network Security Monitoring.☆26Updated 10 years ago
- Credential Phish Analysis and Automation☆97Updated 6 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- Event Log Analysis Tools☆29Updated 8 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Automated install scripts for Cuckoo sandbox☆37Updated 7 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 8 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- A python script to query the MITRE ATT&CK API for tactics, techniques, mitigations, & detection methods for specific threat groups.☆66Updated 6 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆48Updated 8 years ago
- Process HTTP Pcaps With YARA☆103Updated 11 years ago
- Passive Network Audit Framework☆32Updated 7 years ago
- Updates the Emerging Threats open ruleset for Suricata☆10Updated 9 years ago