mole-ids / moleLinks
Yara powered NIDS with high speed packet capture powered by PF_RING
☆69Updated last year
Alternatives and similar repositories for mole
Users that are interested in mole are comparing it to the libraries listed below
Sorting:
- A lightweight tool to score network traffic and flag anomalies☆123Updated 11 months ago
- APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)☆53Updated 8 months ago
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆94Updated last year
- gyp: A pure Go YARA parser☆106Updated last year
- Go implementation of the Community ID flow hashing standard☆20Updated 3 months ago
- A Go implementation of JARM☆119Updated 3 years ago
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆31Updated 5 years ago
- ☆165Updated 2 years ago
- Cross-platform Yara scanner written in Go☆329Updated 2 years ago
- gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that…☆186Updated 2 weeks ago
- Freki is a tool to manipulate packets in usermode using NFQUEUE and golang.☆58Updated 2 years ago
- A Go implementation and parser for Sigma rules.☆88Updated 2 months ago
- Collect autorun records from running system☆60Updated 3 years ago
- SSDEEP hash lib in Golang☆109Updated last year
- simple YARA-based IOC scanner☆169Updated this week
- Golang based web service to scan files with yara rules☆26Updated 8 years ago
- Rule sets for Sagan☆105Updated 4 years ago
- Recog-Go: Pattern Recognition using Rapid7 Recog☆111Updated 2 years ago
- Golang library that implements a sigma log rule parser and match engine.☆95Updated last year
- suricata eve.json parser in Go☆15Updated 6 years ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆54Updated 3 months ago
- Provide a shell like interface by utilizing osquery's distributed API☆81Updated 5 years ago
- go-atomicredteam is a Golang application to execute tests as defined in the atomics folder of Red Canary's Atomic Red Team project (https…☆49Updated 2 years ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- Suricata Verification Tests - Testing Suricata Output☆112Updated 2 weeks ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆104Updated 4 years ago
- Build a local copy of MITRE ATT&CK and CAPEC. Server mode for easy querying.☆33Updated last month
- Passive DNS collection using Zeek☆182Updated 2 years ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆83Updated 3 months ago
- Go library for subscribing to Windows Event Log☆30Updated 6 years ago