Packet captures of malicious traffic for analysis using Wireshark
☆64Jul 10, 2023Updated 2 years ago
Alternatives and similar repositories for Wireshark-quizzes
Users that are interested in Wireshark-quizzes are comparing it to the libraries listed below
Sorting:
- The Security Analyst’s Guide to Suricata☆61Apr 28, 2025Updated 10 months ago
- ☆17Feb 21, 2025Updated last year
- ☆11Nov 26, 2025Updated 3 months ago
- Passive DNS server interface compliant to "Common Output Format"☆10Sep 19, 2016Updated 9 years ago
- The data for paper of `Mobile-app Identification over Drifted Encrypted Network Traffic with Zero-relabeling`.☆12Mar 5, 2023Updated 3 years ago
- Only for educational purposes☆12Jun 17, 2023Updated 2 years ago
- Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)☆29Jul 24, 2023Updated 2 years ago
- Modular malware analysis artifact collection and correlation framework☆54Apr 23, 2024Updated last year
- Threat Hunting is time consuming enough as it is. Coming up with and tracking metrics to justify your hunt team to the Execs often takes…☆13Dec 7, 2022Updated 3 years ago
- A collection of pcaps☆16Jul 5, 2015Updated 10 years ago
- Suricata rule and intel index☆33Jan 13, 2026Updated last month
- pocket guide for core detection engineering concepts☆31May 8, 2023Updated 2 years ago
- Dockerization of CICFlowMeter, with an entry point to accept command line parameters when running the container.☆14May 8, 2020Updated 5 years ago
- The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…☆17Mar 25, 2023Updated 2 years ago
- ☆58Mar 4, 2022Updated 4 years ago
- Repository to provide files related to our blog articles.☆16May 26, 2025Updated 9 months ago
- ☆38Nov 20, 2025Updated 3 months ago
- YARA, SIGMA, SNORT Rules based on Malware Analysis☆16Apr 23, 2025Updated 10 months ago
- ☆14Aug 1, 2025Updated 7 months ago
- ☆35Dec 9, 2023Updated 2 years ago
- DHCP fingerprints database and related tools☆19Nov 14, 2014Updated 11 years ago
- Source code for IMC replicability track☆16Oct 4, 2024Updated last year
- Elasticsearch Stack Overflow Vulnerability☆18Sep 23, 2023Updated 2 years ago
- High resolution traffic measurement tool for Linux written in Go☆19Jul 28, 2019Updated 6 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆108Jul 29, 2021Updated 4 years ago
- A network packet synthesis language☆23Updated this week
- A set of methods to enable traffic classification using randomness tests. We also add an automated database creation algorithm.☆17Jul 12, 2021Updated 4 years ago
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆86Feb 26, 2026Updated last week
- Purpleteam scripts simulation & Detection - trigger events for SOC detections☆193Dec 20, 2024Updated last year
- pcap and smcap python packet payload replayer - and much more!☆23Feb 16, 2021Updated 5 years ago
- ☆25Oct 1, 2025Updated 5 months ago
- Các IDA Flirt signatures HTC tạo☆20Oct 21, 2024Updated last year
- a network packet capture compiler☆205Apr 28, 2022Updated 3 years ago
- VelociraptorMCP is a Model Context Protocol bridge for exposing LLMs to MCP clients.☆70Aug 20, 2025Updated 6 months ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆92Apr 25, 2025Updated 10 months ago
- A Python implementation of the Community ID flow hashing standard☆23Nov 29, 2023Updated 2 years ago
- Go linter for finding defer statements inside for loops☆26Nov 27, 2023Updated 2 years ago
- ☆25Jul 11, 2022Updated 3 years ago
- ☆27Nov 26, 2024Updated last year