sandflysecurity / sandfly-setupLinks
Sandfly Security Agentless Compromise and Intrusion Detection System For Linux
☆82Updated last month
Alternatives and similar repositories for sandfly-setup
Users that are interested in sandfly-setup are comparing it to the libraries listed below
Sorting:
- PacketSifter is a tool/script that is designed to aid analysts in sifting through a packet capture (pcap) to find noteworthy traffic. Pac…☆95Updated 4 years ago
- ☆80Updated 2 years ago
- Tool for quickly gathering information from Shodan.io about the number of IPs which satisfy large number of different queries☆49Updated 2 years ago
- IOCPARSER.COM is a Fast and Reliable service that enables you to extract IOCs and intelligence from different data sources.☆35Updated 3 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆63Updated 2 years ago
- A collection of scripts, tools. and configs for various OS'es and applications, all free and or open-source, to assist in impromptu Blue-…☆102Updated last year
- Passive OS detection based on SYN packets without Transmitting any Data☆47Updated 2 years ago
- CSI SIEM☆110Updated 2 years ago
- Fast IOC and YARA Scanner☆83Updated 5 years ago
- On demand query API for https://github.com/davidonzo/Threat-Intel project.☆56Updated last year
- ELKFH - Elastic, Logstash, Kibana, Filebeat and Honeypot (HTTP, HTTPS, SSH, RDP, VNC, Redis, MySQL, MONGO, SMB, LDAP)☆46Updated 4 years ago
- An experimental Velociraptor implementation using cloud infrastructure☆25Updated last week
- A MITRE ATT&CK Lookup Tool☆45Updated last year
- URL fingerprinting made easy☆89Updated last year
- A basic Python program to check Cybersecurity & Infrastructure Security Agency (CISA) Known Exploited Vulnerabilities (KEV) Catalog☆22Updated 2 years ago
- BlueSploit is a DFIR framework with the main purpose being to quickly capture artifacts for later review.☆32Updated 5 years ago
- Helpful tools for interacting with a GoPhish phishing instance☆50Updated 2 weeks ago
- Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.☆23Updated 8 years ago
- Digital Forensic Analysis and Incident Response Playbooks to handle real world security incidents☆49Updated last year
- Practical Information Sharing between Law Enforcement and CSIRT communities using MISP☆33Updated last year
- an awesome list of active defense resources☆125Updated 5 years ago
- This contains a list of Blue Team Tools that I use daily, and have stored here for reference.☆35Updated 7 years ago
- Accompanying documentation, images, source code and other stuff from the cybernomad.online blog☆28Updated 4 years ago
- A Darktrace CLI written in Python☆16Updated 5 years ago
- MITRE Engage™ is a framework for conducting Denial, Deception, and Adversary Engagements.☆65Updated last year
- Lupo - Malware IOC Extractor. Debugging module for Malware Analysis Automation☆105Updated 3 years ago
- 🧬 Mitre Interactive Network Graph (APTs, Malware, Tools, Techniques & Tactics)☆96Updated 3 years ago
- ☆44Updated 2 months ago
- Shodan Monitoring integration for TheHive.☆131Updated 9 months ago
- A basic phishing kit scanner for dedicated and semi-dedicated hosting☆108Updated 2 years ago