sandflysecurity / sandfly-setupLinks
Sandfly Security Agentless Compromise and Intrusion Detection System For Linux
☆87Updated 2 months ago
Alternatives and similar repositories for sandfly-setup
Users that are interested in sandfly-setup are comparing it to the libraries listed below
Sorting:
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆49Updated 2 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆63Updated 2 weeks ago
- CSI SIEM☆110Updated 3 years ago
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆104Updated last year
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)☆47Updated 4 years ago
- Fast IOC and YARA Scanner☆85Updated 5 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆26Updated last week
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Tool used to perform threat intelligence against packet data☆36Updated 10 months ago
- ☆80Updated 2 years ago
- Collection of walkthroughs on various threat hunting techniques☆76Updated 5 years ago
- Wrap any binary into a cached webserver☆56Updated 3 years ago
- an awesome list of active defense resources☆127Updated 5 years ago
- Helpful tools for interacting with a GoPhish phishing instance☆50Updated last week
- Python command line tool used for generating GIAC Certification indexes.☆29Updated 2 years ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆27Updated 5 years ago
- An npm package for extracting common IoC (Indicator of Compromise) from a block of text☆58Updated 2 months ago
- Endpoint detection for remote hosts for consumption by RITA and Elasticsearch☆80Updated last month
- ☆44Updated 5 months ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- Web interface for monitoring and interacting with Netflow data stored in Silk repositories.☆13Updated 6 years ago
- Passive OS detection based on SYN packets without Transmitting any Data☆49Updated 2 years ago
- Public tools, scripts or code snippets that can help when working with our products☆46Updated 7 months ago
- Run Velociraptor on Security Onion☆40Updated 3 years ago
- Lokix Platform is a free open-source solution to help blue teams and threat hunters use Loki Scanner to sweep enterprise networks☆25Updated 5 years ago
- A MITRE ATT&CK Lookup Tool☆46Updated last year
- On demand query API for https://github.com/davidonzo/Threat-Intel project.☆58Updated last year
- A python script to turn Ubuntu Desktop in a one stop security platform. The InfoSec Fortress installs the packages,tools, and resources t…☆55Updated 3 years ago