A RESTful API frontend for Stenographer
☆54Dec 7, 2022Updated 3 years ago
Alternatives and similar repositories for docket
Users that are interested in docket are comparing it to the libraries listed below
Sorting:
- File Scanning Framework☆294Sep 15, 2021Updated 4 years ago
- Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of…☆1,800Jul 26, 2021Updated 4 years ago
- Documentation for ROCK NSM☆27Apr 7, 2021Updated 4 years ago
- DHCP Fingerprinting☆31Dec 15, 2020Updated 5 years ago
- Dashboards and loader for ROCK NSM dashboards☆49Mar 13, 2023Updated 3 years ago
- Automated deployment scripts for the RockNSM network hunting distribution.☆456Jul 2, 2023Updated 2 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Aug 3, 2019Updated 6 years ago
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆40Sep 2, 2025Updated 6 months ago
- Scripts for MacOS related tasks.☆18Feb 16, 2020Updated 6 years ago
- API to access the Redis database of a BGP Ranking instance.☆17Dec 11, 2017Updated 8 years ago
- Threat Feed Aggregation, Made Easy☆169Jul 13, 2020Updated 5 years ago
- Integrating Sysinternals Autoruns’ logs into Security Onion☆31Feb 20, 2024Updated 2 years ago
- Yara rules I've written☆10Dec 9, 2015Updated 10 years ago
- Repository of SCAP content developed fully or in part by the NIWC Atlantic SCAP team☆45Feb 11, 2026Updated last month
- Tool for managing Zeek deployments.☆60Mar 12, 2026Updated last week
- ☆56Jan 7, 2024Updated 2 years ago
- Suricata Extreme Performance Tuning guide☆213Mar 15, 2018Updated 8 years ago
- High performance time ordered PCAP merging utility☆23Jun 20, 2022Updated 3 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Nov 19, 2020Updated 5 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19May 27, 2017Updated 8 years ago
- Ready to run scripts for network analysis☆91Mar 20, 2025Updated last year
- cidrgen is based on cidr's subnet IP list generator☆15Aug 21, 2020Updated 5 years ago
- Oriana is a threat hunting tool that leverages a subset of Windows events to build relationships, calculate totals and run analytics. The…☆176Jun 10, 2021Updated 4 years ago
- Set of scripts to index PCAP files and retrieve packets☆14Sep 10, 2015Updated 10 years ago
- ☆16Apr 11, 2017Updated 8 years ago
- An open standard for hashing network flows into identifiers, a.k.a "Community IDs".☆194Sep 23, 2024Updated last year
- Zeek package to generate a SMB client fingerprint☆27May 5, 2020Updated 5 years ago
- Kibana 6 Templates for Suricata IDPS Threat Hunting☆24Mar 5, 2019Updated 7 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Feb 20, 2017Updated 9 years ago
- ☆12Mar 24, 2018Updated 7 years ago
- Old home of LimaCharlie, open source EDR☆32Sep 4, 2023Updated 2 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Apr 20, 2023Updated 2 years ago
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44May 9, 2024Updated last year
- Snort + Pulledpork + Websnort in Docker!☆22Nov 9, 2021Updated 4 years ago
- Useful resources for Zeek(https://zeek.org/) (Bro(http://bro.org/))☆30Apr 17, 2020Updated 5 years ago
- DPS' Lightweight Investigation Notebook☆433Dec 31, 2023Updated 2 years ago
- Documentation for Zeek☆50Oct 13, 2025Updated 5 months ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆143Updated this week
- Plugin providing native AF_Packet support for Zeek.☆33Oct 22, 2025Updated 5 months ago