rjbhide / wireshark-forensics-plugin

Related projects ⓘ

Alternatives and complementary repositories for wireshark-forensics-plugin

• malienist / lupo
  Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation
  ☆104Updated 2 years ago
• packetsifter / packetsifterTool
  PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…
  ☆93Updated 3 years ago
• cert-lv / exchange_webshell_detection
  Detect webshells dropped on Microsoft Exchange servers exploited through "proxylogon" group of vulnerabilites (CVE-2021-26855, CVE-2021-2…
  ☆98Updated 3 years ago
• cyware-labs / Threat-Response-Docker
  ☆41Updated last year
• carbonblack / active_c2_ioc_public
  Active C2 IoCs
  ☆96Updated last year
• Lifars / gargamel
  A forensic evidence acquirer
  ☆85Updated 3 years ago
• bonjourmalware / melody
  Melody is a transparent internet sensor built for threat intelligence. Supports custom tagging rules and vulnerable application simulatio…
  ☆138Updated 3 years ago
• telekom-security / cve-2023-3519-citrix-scanner
  Citrix Scanner for CVE-2023-3519
  ☆48Updated last year
• StevenD33 / Lab-DFIR-SOC
  ☆64Updated 3 years ago
• splunk / melting-cobalt
  A Cobalt Strike Scanner that retrieves detected Team Server beacons into a JSON object
  ☆164Updated 2 years ago
• silverfort-open-source / latma
  ☆79Updated last year
• aau-network-security / riotpot
  IoT and Operational Technology Honeypot
  ☆105Updated last year
• cedowens / C2-JARM
  A list of JARM hashes for different ssl implementations used by some C2/red team tools.
  ☆135Updated last year
• vuldb / cyber_threat_intelligence
  Cyber Threat Intelligence Data, Indicators, and Analysis
  ☆74Updated last month
• la3ar0v / TuxResponse
  Linux Incident Response
  ☆89Updated 5 years ago
• thomaspatzke / Log4Pot
  A honeypot for the Log4Shell vulnerability (CVE-2021-44228).
  ☆90Updated 2 years ago
• alex-cart / LEAF
  Linux Evidence Acquisition Framework
  ☆113Updated last month
• RootUp / PersonalStuff
  Upload files done during my research.
  ☆130Updated this week
• MazX0p / ThreatHound
  ☆155Updated 11 months ago
• TelefonicaTC2Tech / packagedna
  This tool gives developers, researchers and companies the ability to analyze software packages of different programming languages that ar…
  ☆68Updated 3 years ago
• G4LB1T / pstf2
  Passive Security Tools Fingerprinting Framework
  ☆72Updated 3 years ago
• BushidoUK / Abused-Legitimate-Services
  Cloud, CDN, and marketing services leveraged by cybercriminals and APT groups
  ☆57Updated 2 years ago
• A3h1nt / Dnsrr
  DNSrr is a tool written in bash, used to enumerate all the juicy stuff from DNS.
  ☆119Updated 2 years ago
• carlospolop / autoVolatility
  Run several volatility plugins at the same time
  ☆108Updated 2 years ago
• KaanSK / shomon
  Shodan Monitoring integration for TheHive.
  ☆130Updated 2 years ago
• curated-intel / Initial-Access-Broker-Landscape
  A visualized overview of the Initial Access Broker (IAB) cybercrime landscape
  ☆108Updated 3 years ago
• markuskont / pikksilm
  Look into EDR events from network
  ☆23Updated 7 months ago
• Patrowl / PatrowlHears
  PatrowlHears - Vulnerability Intelligence Center / Exploits
  ☆159Updated this week