Alternatives and similar repositories for dataShark

Users that are interested in dataShark are comparing it to the libraries listed below

• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆78Updated last year
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆116Updated 6 years ago
• Tripwire / TARDIS
  Threat Analysis, Reconnaissance, and Data Intelligence System
  ☆125Updated 10 years ago
• Plazmaz / MongoDB-HoneyProxy
  A honeypot proxy for mongodb. When run, this will proxy and log all traffic to a dummy mongodb server.
  ☆92Updated 2 years ago
• packetloop / packetpig
  Packetpig - Open Source Big Data Security Analytics
  ☆298Updated 7 years ago
• tatsuiman / rpot2
  Real-time Packet Observation Tool
  ☆39Updated 2 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆132Updated 10 years ago
• adulau / MalwareClassifier
  Malware Classifier From Network Captures
  ☆82Updated 8 years ago
• Yelp / amira
  AMIRA: Automated Malware Incident Response & Analysis
  ☆151Updated last week
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆34Updated 2 years ago
• mitre / caret
  CARET - A tool for viewing cyber analytic relationships
  ☆55Updated 5 years ago
• csirtgadgets / bearded-avenger-deploymentkit
  CIFv3 DeploymentKit
  ☆64Updated 5 years ago
• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆54Updated 8 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆107Updated 6 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• securityclippy / elasticintel
  Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.
  ☆141Updated 2 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• TAXIIProject / yeti
  YETI is a TAXII implementation
  ☆46Updated 6 years ago
• CIRCL / compliance
  Legal, procedural and policies document templates for operating an IRT
  ☆64Updated last year
• certtools / intelmq-feeds-documentation
  Cyber Threat Intelligence Feeds
  ☆69Updated last year
• pauloangelo / hogzilla
  Hogzilla is an Intrusion Detection System (IDS) supported by Snort, Apache Spark, HBase and libnDPI, which provides Network Anomaly Detec…
  ☆28Updated 7 years ago
• cybermaggedon / cyberprobe
  Capturing, analysing and responding to cyber attacks
  ☆171Updated last year
• xme / toolbox
  Miscelaneous useful scripts for my day to day projects
  ☆124Updated 5 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆63Updated 11 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Updated 6 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 5 years ago
• MISP / mail_to_misp
  Connect your mail client/infrastructure to MISP in order to create events based on the information contained within mails.
  ☆69Updated last year