jordan2175 / rewritecap

Related projects ⓘ

Alternatives and complementary repositories for rewritecap

• dutchcoders / homographs
  Homographs: brutefind homographs within a font
  ☆18Updated 7 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆28Updated 4 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 4 years ago
• socprime / SigmaRulesIntegration
  ☆15Updated 6 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 6 months ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 4 months ago
• hosom / bro-phishing
  Detect Phishing with Bro IDS
  ☆18Updated 7 years ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 9 years ago
• 0xrawsec / golang-misp
  Golang Library to interact with your MISP instance
  ☆21Updated 5 years ago
• satta / gommunityid
  Go implementation of the Community ID flow hashing standard
  ☆19Updated 2 months ago
• zeek / zeek-agent-framework
  This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2
  ☆14Updated 4 years ago
• JustinAzoff / gotm
  Full packet capture with flow cutoff, rotation, and compression
  ☆15Updated 6 years ago
• sroberts / responding-at-scale-with-osquery
  Using osquery for Mass Incident Detection & Response
  ☆19Updated 8 years ago
• gamelinux / activedns
  An active domain name query tool to help keep track of domain name movements...
  ☆15Updated 3 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆31Updated last month
• DCSO / slinkwatch
  automatic enumeration and maintenance of Suricata monitoring interfaces
  ☆11Updated 4 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 3 years ago
• joesecurity / DocBleachShell
  DocBleachShell is the integration of the great DocBleach, https://github.com/docbleach/DocBleach Content Disarm and Reconstruction tool i…
  ☆21Updated 2 years ago
• ukncsc / stix-cvebuilder
  CVE Builder script that generates STIX formatted Exploit Target objects
  ☆18Updated 8 years ago
• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆26Updated 4 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 10 months ago
• fmadio / pcap_merge
  High performance time ordered PCAP merging utility
  ☆22Updated 2 years ago
• govau / certwatch
  ☆22Updated 6 years ago
• CIRCL / IP-ASN-history
  IP-ASN-history is a server software to store efficiently the history of BGP announces and quickly lookup IP addresses origins
  ☆45Updated 2 years ago
• riverloopsec / beekeeperwids
  A IEEE 802.15.4 Wireless Intrusion Detection System, Using the KillerBee Framework
  ☆37Updated 4 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆11Updated last year
• certtools / contactdb
  The ContactDB project was initiated to cover the need for a tool to maintain contacts for CSIRT teams
  ☆37Updated 2 years ago