salesforce / hassh
HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints can be easily stored, searched and shared in the form of a small MD5 fingerprint.
☆540Updated last week
Alternatives and similar repositories for hassh:
Users that are interested in hassh are comparing it to the libraries listed below
- FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …☆668Updated last year
- Code + documentation for the public GreyNoise API☆314Updated 4 years ago
- Python library for connecting to CertStream☆444Updated 9 months ago
- A Linux Auditd rule set mapped to MITRE's Attack Framework☆788Updated 4 years ago
- Machinae Security Intelligence Collector☆512Updated 11 months ago
- Cross-platform Yara scanner written in Go☆329Updated 2 years ago
- Golang IPv6 address enumeration☆356Updated 5 years ago
- This repo contains logstash of various honeypots☆174Updated 5 years ago
- Modular file scanning/analysis framework☆619Updated 5 years ago
- Generic Low Interaction Honeypot☆277Updated last month
- A network packet forensics tool for SSH☆253Updated 4 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆477Updated 4 months ago
- A PoC tool designed to enhance the effectiveness of your traps by spreading breadcrumbs & honeytokens across your systems to lure the att…☆272Updated 6 years ago
- The GOSINT framework is a project used for collecting, processing, and exporting high quality indicators of compromise (IOCs).☆544Updated 2 years ago
- Credentials catching honeypot☆380Updated 11 months ago
- A repository for using osquery for incident detection and response☆847Updated 2 years ago
- The IKE Scanner☆377Updated 7 months ago
- 16,432 Free Yara rules created by☆383Updated 5 years ago
- Mirror of https://github.com/zeek/zeek☆175Updated 2 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- a network packet capture compiler☆199Updated 3 years ago
- Axeman is a utility to retrieve certificates from Certificate Transparency Lists (CTLs)☆221Updated last year
- Detecting ATT&CK techniques & tactics for Linux☆258Updated 4 years ago
- Super Next generation Advanced Reactive honEypot☆462Updated 11 months ago
- osquery extensions by Trail of Bits☆264Updated 2 years ago
- Suricata Extreme Performance Tuning guide☆208Updated 7 years ago
- A testing framework for mail security and filtering solutions.☆244Updated last year
- Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search☆457Updated this week
- Data exfiltration over DNS request covert channel☆867Updated last year
- Decept Network Protocol Proxy☆276Updated 2 years ago