markofu / pcapsLinks
Public Repository of all Publicly Available Packet Captures that I've used or come across
☆182Updated 12 years ago
Alternatives and similar repositories for pcaps
Users that are interested in pcaps are comparing it to the libraries listed below
Sorting:
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- ☆203Updated 2 years ago
- a network packet capture compiler☆200Updated 3 years ago
- ☆172Updated 3 years ago
- Extract files from network traffic with Zeek.☆101Updated 5 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆137Updated this week
- A Python RESTful API framework for online malware analysis and threat intelligence services.☆368Updated last year
- CRITs Services Collection☆184Updated 4 years ago
- Cyber Threat Intelligence Feeds☆97Updated 8 years ago
- Automatic Yara Rule Generation☆332Updated 9 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago
- Wireshark plugin to display Suricata analysis info☆94Updated 3 years ago
- Snorpy is a python script the gives a Gui interface to help those new to snort create rules.☆61Updated 10 months ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 3 years ago
- 16,432 Free Yara rules created by☆384Updated 6 years ago
- ☆131Updated 4 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆182Updated 2 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆480Updated last month
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated last year
- Pcap (capture file) Analysis Toolkit(v.1)☆106Updated 8 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆152Updated 2 weeks ago
- Protocol Analysis/Decoder Framework☆493Updated 2 years ago
- A framework for receiving and redistributing abuse feeds☆124Updated 5 years ago
- Passive Real-time Asset Detection System☆243Updated last year
- Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect int…☆148Updated 11 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- A lightweight tool to load Windows Event Log evtx files into Elasticsearch.☆117Updated 4 years ago
- Information released publicly by NCC Group's Cyber Incident Response Team☆476Updated 3 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- Evading Snort Intrusion Detection System.☆78Updated 3 years ago