mrdraper / Packet2Snort
A Python script that generates Snort IDS rules from network packets
☆25Updated 7 years ago
Alternatives and similar repositories for Packet2Snort:
Users that are interested in Packet2Snort are comparing it to the libraries listed below
- This is a malware analysis project which expecte to generate snort rule via malicious network traffic☆28Updated last year
- A tool to generate Snort rules based on public IP reputation data☆56Updated 11 years ago
- Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases☆31Updated 7 years ago
- Evading Snort Intrusion Detection System.☆77Updated 3 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆100Updated 3 years ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆75Updated 7 years ago
- A collection of resources for security data☆41Updated 7 years ago
- Web service for scanning pcaps with snort☆108Updated 6 years ago
- A repository for OSSEC rules and decoders☆54Updated last year
- An anomaly-based intrusion detection system.☆82Updated 2 years ago
- Mapping NSM rules to MITRE ATT&CK☆70Updated 4 years ago
- Extract files from network traffic with Zeek.☆101Updated 5 years ago
- Capture, upload and analyze network traffic; powered by PacketTotal.com.☆96Updated 5 years ago
- ☆42Updated 2 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- malware-traffic-analysis.net PCAPs repository.☆35Updated 8 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆149Updated 10 months ago
- A web-based tool to assist the work of the intuitive threat analysts.☆113Updated 6 years ago
- DGA Domain Detection using Bigram Frequency Analysis☆54Updated 7 years ago
- Anomaly detection based on DNS traffic analysis☆51Updated 4 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Detect cryptocurrency mining traffic with Zeek.☆46Updated 4 years ago
- A series of labs that will help users apply various data science techniques to security related data.☆132Updated 9 years ago
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆31Updated 4 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- a network packet capture compiler☆198Updated 2 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆281Updated last year
- Tool for managing Zeek deployments.☆54Updated last week
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆79Updated 9 years ago
- Python API for vFeed Vulnerability & Threat Intelligence Database Enterprise & Pro Editions☆100Updated last year