Alternatives and similar repositories for sniffles

Users that are interested in sniffles are comparing it to the libraries listed below

• jipegit / FECT
  Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer
  ☆42Updated 4 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• jusafing / pnaf
  Passive Network Audit Framework
  ☆32Updated 7 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• rangercha / tshark_extractor
  python wrapper to use tshark for file extraction from the command line.
  ☆27Updated 6 years ago
• JimmyAstle / Atomic-Parser
  Python parser for Red Canary's Atomic Red Team Yamls
  ☆27Updated 6 years ago
• HPE-AppliedSecurityResearch / maltese
  Maltese - Malware Traffic Emulator
  ☆26Updated 8 years ago
• thirdeyeintelligence / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 7 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆43Updated 3 years ago
• WeaverHeavy / Threat-Intelligence-Tradecraft
  ☆27Updated 7 years ago
• sisoc-tokyo / mimikatz_detection
  ☆12Updated 7 years ago
• c-APT-ure / my-public-stuff
  repo for sharing stuff
  ☆16Updated last year
• DearBytes / Opensource-Endpoint-Monitoring
  This repository contains all the config files and scripts used for our Open Source Endpoint monitoring project.
  ☆34Updated 5 years ago
• Rurik / Java_IDX_Parser
  Parses Java Cache IDX files
  ☆39Updated 7 years ago
• hiddenillusion / FileLookup
  Quick & dirty script to get info on a file from online resources (VirusTotal, Team Cymru, Shadow Server etc.)
  ☆30Updated 10 years ago
• 0x4D31 / hassh-utils
  hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…
  ☆57Updated 8 months ago
• joesecurity / Joe-Sandbox-Bro
  JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox
  ☆45Updated 5 years ago
• idiom / IRScripts
  Incident Response Scripts
  ☆30Updated 5 years ago
• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆27Updated 5 years ago
• PivotAll / PivotAll
  Comprehensive Pivoting Framework
  ☆20Updated 8 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• Beercow / ProcDOT-Plugins
  Plugins to add funtionality to ProcDOT. http://www.procdot.com
  ☆23Updated last year
• mpars0ns / scansio-sonar-es
  Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching
  ☆33Updated 9 years ago
• caschnee / misp-use-cases
  ☆14Updated 6 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• gburkle / Stalker
  Threat Intel and Incident Reponse
  ☆10Updated 6 years ago
• johnnykv / mnemosyne
  Normalizer for honeypot data.
  ☆45Updated 9 years ago
• weslambert / securityonion-strelka
  ☆13Updated 5 years ago