mrdraper / Packet2Snort
A Python script that generates Snort IDS rules from network packets
☆25Updated 7 years ago
Alternatives and similar repositories for Packet2Snort:
Users that are interested in Packet2Snort are comparing it to the libraries listed below
- A collection of resources for security data☆41Updated 7 years ago
- A tool to generate Snort rules based on public IP reputation data☆56Updated 11 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆101Updated 3 years ago
- Extract files from network traffic with Zeek.☆101Updated 5 years ago
- DGA Domains detection☆66Updated 7 years ago
- Web service for scanning pcaps with snort☆109Updated 6 years ago
- Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases☆31Updated 7 years ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆75Updated 7 years ago
- Evading Snort Intrusion Detection System.☆77Updated 3 years ago
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆113Updated 6 years ago
- Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)☆100Updated 3 months ago
- Malware/IOC ingestion and processing engine☆104Updated 6 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- Graph Representation of MITRE ATT&CK's CTI data☆48Updated 5 years ago
- The growing network connectivity witnessed in Supervisory Control and Data Acquisition (SCADA) systems raises cyber security concerns for…☆19Updated 7 years ago
- DGA Domain Detection using Bigram Frequency Analysis☆54Updated 7 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆79Updated 9 years ago
- malware-traffic-analysis.net PCAPs repository.☆35Updated 8 years ago
- Wireshark plugin to display Suricata analysis info☆93Updated 3 years ago
- A collection of known Domain Generation Algorithms☆66Updated 9 years ago
- Repository of yara rules☆59Updated 2 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆39Updated last year
- Python API for the CVSS v3☆58Updated 3 years ago
- This is a malware analysis project which expecte to generate snort rule via malicious network traffic☆28Updated 2 years ago
- Detection of malware using dynamic behavior and Windows audit logs☆77Updated 9 years ago
- Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration☆39Updated 9 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆150Updated 11 months ago