markofu / pcaps

Related projects ⓘ

Alternatives and complementary repositories for pcaps

• Cisco-Talos / file2pcap
  ☆167Updated 3 years ago
• 0x4D31 / deception-as-detection
  Deception based detection techniques mapped to the MITRE’s ATT&CK framework
  ☆285Updated 7 years ago
• ahm3dhany / IDS-Evasion
  Evading Snort Intrusion Detection System.
  ☆76Updated 3 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆99Updated 4 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆194Updated 2 years ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆276Updated last year
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆148Updated 6 months ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆91Updated 3 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆120Updated 3 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆109Updated 11 years ago
• azizaltuntas / Network-Analysis-Tools
  Pcap (capture file) Analysis Toolkit(v.1)
  ☆104Updated 7 years ago
• mandiant / ioc_writer
  ☆200Updated last year
• MITRECND / chopshop
  Protocol Analysis/Decoder Framework
  ☆489Updated last year
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆73Updated 6 years ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆204Updated 6 years ago
• sjhilt / GasPot
  GasPot Released at Blackhat 2015
  ☆136Updated 6 months ago
• diogo-fernan / malsub
  A Python RESTful API framework for online malware analysis and threat intelligence services.
  ☆368Updated 6 months ago
• dgunter / evtxtoelk
  A lightweight tool to load Windows Event Log evtx files into Elasticsearch.
  ☆115Updated 4 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• hpfeeds / hpfeeds
  Honeynet Project generic authenticated datafeed protocol
  ☆212Updated last year
• crond-jaist / cyris
  CyRIS: Cyber Range Instantiation System
  ☆98Updated 10 months ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• pchaigno / dga-collection
  A collection of known Domain Generation Algorithms
  ☆67Updated 8 years ago
• aptnotes / tools
  Tools to interact with APTnotes reporting/index.
  ☆97Updated 4 years ago
• egaus / MaliciousMacroBot
  ☆150Updated 5 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆452Updated this week
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago
• jzadeh / aktaion
  Aktaion: Open Source ML tool and data samples for Exploit and Phishing Research
  ☆142Updated 5 years ago
• mitre / cascade-server
  CASCADE Server
  ☆264Updated last year
• michalpurzynski / bro-gramming
  Bro IDS programs collection.
  ☆146Updated 5 years ago