rjbhide / wireshark-forensics-plugin
☆90Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for wireshark-forensics-plugin
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆104Updated 2 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆93Updated 3 years ago
- Detect webshells dropped on Microsoft Exchange servers exploited through "proxylogon" group of vulnerabilites (CVE-2021-26855, CVE-2021-2…☆98Updated 3 years ago
- ☆41Updated last year
- Active C2 IoCs☆96Updated last year
- A forensic evidence acquirer☆85Updated 3 years ago
- Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…☆138Updated 3 years ago
- Citrix Scanner for CVE-2023-3519☆48Updated last year
- ☆64Updated 3 years ago
- A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object☆164Updated 2 years ago
- ☆79Updated last year
- IoT and Operational Technology Honeypot☆105Updated last year
- A list of JARM hashes for different ssl implementations used by some C2/red team tools.☆135Updated last year
- Cyber Threat Intelligence Data, Indicators, and Analysis☆74Updated last month
- Linux Incident Response☆89Updated 5 years ago
- A honeypot for the Log4Shell vulnerability (CVE-2021-44228).☆90Updated 2 years ago
- Linux Evidence Acquisition Framework☆113Updated last month
- Upload files done during my research.☆130Updated this week
- ☆155Updated 11 months ago
- This tool gives developers, researchers and companies the ability to analyze software packages of different programming languages that ar…☆68Updated 3 years ago
- Passive Security Tools Fingerprinting Framework☆72Updated 3 years ago
- Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups☆57Updated 2 years ago
- DNSrr is a tool written in bash, used to enumerate all the juicy stuff from DNS.☆119Updated 2 years ago
- Run several volatility plugins at the same time☆108Updated 2 years ago
- Shodan Monitoring integration for TheHive.☆130Updated 2 years ago
- A visualized overview of the Initial Access Broker (IAB) cybercrime landscape☆108Updated 3 years ago
- Look into EDR events from network☆23Updated 7 months ago
- PatrowlHears - Vulnerability Intelligence Center / Exploits☆159Updated this week