Alternatives and similar repositories for recog

Users that are interested in recog are comparing it to the libraries listed below

• corelight / zeek-quic
  Bro analyzer that detects Google's QUIC protocol
  ☆10Updated 4 years ago
• Yara-Rules / YaraRET
  Carving tool based in Radare2 & Yara
  ☆16Updated 6 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• intelforge / tmc
  Threat Mapping Catalogue
  ☆17Updated 4 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• t2mune / nield
  A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.
  ☆32Updated 10 months ago
• ail-project / ail-yara-rules
  A set of YARA rules for the AIL framework to detect leak or information disclosure
  ☆38Updated 6 months ago
• hdm / mac-tracker
  Historical Tracking of MAC Address Assignments
  ☆35Updated this week
• 2igosha / sunburst_dga
  ☆22Updated 4 years ago
• redteam-project / compliant
  Ansible role for security standards compliance
  ☆13Updated 6 years ago
• CountablyInfinite / dit
  DIT is a DTLS MitM proxy implemented in Python 3. It can intercept, manipulate and suppress datagrams between two DTLS endpoints and supp…
  ☆58Updated 3 years ago
• ciscocsirt / dhp
  Simple Docker Honeypot server emulating small snippets of the Docker HTTP API
  ☆31Updated 4 years ago
• jipegit / IncidentsMindMaps
  Cybersecurity Incidents Mind Maps
  ☆33Updated 3 years ago
• caschnee / misp-use-cases
  ☆14Updated 7 years ago
• 0x4D31 / hassh-utils
  hassh-utils: Nmap NSE Script and Docker image for HASSH - the SSH client/server fingerprinting method (https://github.com/salesforce/hass…
  ☆59Updated 11 months ago
• ancat / egrets
  egrets monitors egress
  ☆46Updated 5 years ago
• nccgroup / Threat-Intelligence-Alerts
  Welcome to the NCC Group Threat Intelligence Alert repo, here you will find the alerts which we have raised to our customers regarding in…
  ☆25Updated 2 years ago
• sandflysecurity / sandfly-file-decloak
  Decloak Linux stealth rootkits hiding data with this simple memory mapped IO investigation tool.
  ☆25Updated 2 years ago
• kyle-phillips / adversarial-tools
  A collection of tools adversaries commonly use in an attack.
  ☆14Updated 9 months ago
• CIRCL / pcapdj
  pcapdj - dispatch pcap files
  ☆46Updated 5 years ago
• mandiant / ioc-scanner-CVE-2019-19781
  Indicator of Compromise Scanner for CVE-2019-19781
  ☆94Updated 5 years ago
• t4d / HSRPwn
  Declare and keep up a rogue default-gateway in Cisco's HSRP default configuration
  ☆18Updated 8 years ago
• ninoseki / ukemi
  A CLI tool for querying passive DNS services
  ☆41Updated last year
• rangercha / tshark_extractor
  python wrapper to use tshark for file extraction from the command line.
  ☆27Updated 6 years ago
• nccgroup / SSHession
  The SSH Multiplex Backdoor Tool
  ☆65Updated 5 years ago
• CIRCL / forensic-tools
  CIRCL system forensic tools or a jumble of tools to support forensic
  ☆42Updated 2 years ago
• anvilsecure / dawgmon
  dawg the hallway monitor - monitor operating system changes and analyze introduced attack surface when installing software
  ☆55Updated 5 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆74Updated last year
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago