jonschipp / mal-dnssearch
Compare multiple log formats against malware reputation lists.
☆88Updated 7 years ago
Alternatives and similar repositories for mal-dnssearch:
Users that are interested in mal-dnssearch are comparing it to the libraries listed below
- A collection of Bro scripts I've written☆40Updated 9 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Updated 8 years ago
- Script for generating Bro intel files from pdf or html reports☆77Updated 9 years ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- ☆71Updated 3 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- a Malware/Threat Analyst Desktop☆89Updated 9 years ago
- brocon-15 scripts☆13Updated 8 years ago
- Bro-IDS scripts☆50Updated 8 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆79Updated 9 years ago
- CRITs IOC Visualization in Maltego☆27Updated 10 years ago
- Beholder is a shell script which installs and configures essentials to peer into your network activity.☆19Updated 7 years ago
- ☆85Updated 11 years ago
- Cuckoo Sandbox Local Maltego Transforms Project☆49Updated 10 years ago
- **BETA** A simple buildscript for network security monitoring on RHEL/CentOS☆31Updated 8 years ago
- Just another tool to extract Indicator of compromise (ioc) from files☆29Updated 9 years ago
- integrating bro into yara☆33Updated 10 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- ☆17Updated 7 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Passive DNS visualization and Passive DNS server toolkit☆35Updated 13 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- Threat Analysis, Reconnaissance, and Data Intelligence System☆125Updated 9 years ago
- Dockerfiles for NSM tools☆84Updated 8 years ago
- Harbinger Threat Intelligence☆83Updated 9 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Enrich a host with open source security information☆27Updated 9 years ago
- vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana☆41Updated 10 years ago
- Docker container for MISP☆96Updated 6 years ago
- Cyber Intel Management☆48Updated 7 years ago