Alternatives and similar repositories for capsan

Users that are interested in capsan are comparing it to the libraries listed below

• jsiwek / bro_vetting
  Bro scripts to monitor for new hosts within a subnet range that aren't whitelisted/vetted.
  ☆13Updated 11 years ago
• rsmmr / hilti
  **NOTE**: This is outdated and no longer maintained. There's a new version at https://github.com/zeek/spicy.
  ☆40Updated 7 years ago
• zeek / zeek-netcontrol
  Connectors for the Zeek NetControl framework
  ☆19Updated 3 months ago
• rocknsm / docket
  A RESTful API frontend for Stenographer
  ☆54Updated 2 years ago
• regit / opensvp
  Opensvp is a security tool implementing "attacks" to be able to test the resistance of firewall to protocol level attack.
  ☆48Updated 8 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆91Updated 7 months ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆77Updated last year
• jedisct1 / massresolver
  Mass DNS resolution tool
  ☆37Updated 4 years ago
• corelight / corelight-client
  Corelight Sensor API command-line client
  ☆17Updated last month
• corelight / zeek-long-connections
  Zeek package for tracking long connections to report them before they have completed.
  ☆30Updated 3 months ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• zeek / trace-summary
  Generates network traffic summaries.
  ☆22Updated 2 weeks ago
• elceef / dhcpf
  Passive DHCP fingerprinting implementation
  ☆51Updated 8 years ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• sreinhardt / Docker-Honeynet
  Docker configs and build scripts.
  ☆22Updated 10 years ago
• zeek / zeekctl
  Tool for managing Zeek deployments.
  ☆56Updated 2 weeks ago
• dutchcoders / troje
  Troje is a honeypot built around lxc containers. It will run each connection with the service within a seperate lxc container.
  ☆44Updated 10 years ago
• DataSoft / Nova
  Repo for the Open Source version of NOVA
  ☆75Updated last year
• leonward / OpenFPC
  OpenFPC, Open Source Full Packet Capture
  ☆72Updated 6 years ago
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• uber-archive / usb2fac
  Enabling 2fac confirmation for newly connected USB devices
  ☆45Updated 8 years ago
• fygrave / honeyntp
  NTP logger/honeypot
  ☆53Updated 11 years ago
• UWNetworksLab / satellite
  Satellite: Measuring The Internet's Stars
  ☆38Updated 4 years ago
• zeek / package-manager
  A package manager for Zeek
  ☆46Updated 2 weeks ago
• sethhall / bro-scripts
  Various Bro scripts
  ☆38Updated 10 years ago
• jakewarren / snort-rule-generator
  Quickly generate snort rules for IOCs
  ☆18Updated 9 years ago
• jpsenior / threataggregator
  Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…
  ☆79Updated 9 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago