Alternatives and similar repositories for gait

Users that are interested in gait are comparing it to the libraries listed below

• zeek / spicy-analyzers

  View on GitHub
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Sep 16, 2024Updated last year
• FoxIO-LLC / ja4tscan

  View on GitHub
  JA4TScan is an active TCP server fingerprinting tool.
  ☆105Aug 29, 2024Updated last year
• Tib3rius / revshellgen

  View on GitHub
  Simple script to generate commands to achieve reverse shells.
  ☆12Aug 12, 2019Updated 6 years ago
• dfir-scripts / EverReady-Disk-Mount

  View on GitHub
  Disk Image Mounting Script
  ☆11Jan 22, 2026Updated 3 weeks ago
• joswr1ght / pptxindex

  View on GitHub
  Create a MS Word index file from PowerPoint notes and slides
  ☆46Sep 6, 2025Updated 5 months ago
• corelight / zeek-quic

  View on GitHub
  Bro analyzer that detects Google's QUIC protocol
  ☆10Mar 2, 2021Updated 4 years ago
• hotnops / AzureScripts

  View on GitHub
  Random scripts for azure stuff
  ☆13Oct 12, 2022Updated 3 years ago
• precurse / zeek-httpattacks

  View on GitHub
  This module detects HTTP requests that are non RFC compliant and used for smuggling
  ☆12Mar 16, 2023Updated 2 years ago
• salesforce / GQUIC_Protocol_Analyzer

  View on GitHub
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Sep 13, 2023Updated 2 years ago
• rocknsm / docket

  View on GitHub
  A RESTful API frontend for Stenographer
  ☆54Dec 7, 2022Updated 3 years ago
• jephthai / NTFSx

  View on GitHub
  NTFSx is a tool for extracting files from an NTFS filesystem that are otherwise inaccessible.
  ☆14Jul 26, 2013Updated 12 years ago
• superyyrrzzz / teams-crawler

  View on GitHub
  A crawler to export all chat threads in a Microsoft Teams channel
  ☆12Feb 16, 2021Updated 4 years ago
• Tib3rius / rsg

  View on GitHub
  ReverShellGenerator - A tool to generate various ways to do a reverse shell
  ☆12Mar 2, 2019Updated 6 years ago
• rasta-mouse / OffensiveCSharp

  View on GitHub
  Collection of Offensive C# Tooling
  ☆13Nov 4, 2021Updated 4 years ago
• GhostManager / Shepherd

  View on GitHub
  A Django application to help red team operators manage a library of domain names
  ☆167May 24, 2023Updated 2 years ago
• outflanknl / RedFile

  View on GitHub
  Serving files with conditions, serverside keying and more.
  ☆18May 26, 2022Updated 3 years ago
• theparanoids / rdfp

  View on GitHub
  Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt
  ☆40Jun 20, 2023Updated 2 years ago
• cisagov / icsnpp-modbus

  View on GitHub
  Zeek Modbus Extension Scripts - CISA ICSNPP
  ☆20Dec 16, 2025Updated last month
• cisagov / icsnpp-opcua-binary

  View on GitHub
  Zeek OPCUA Binary Parser - CISA ICSNPP
  ☆21Nov 19, 2025Updated 2 months ago
• woanware / autorunner

  View on GitHub
  Emulates the Sysinternals Autoruns tool, but for DFIR purposes e.g. multi user processing
  ☆55May 18, 2019Updated 6 years ago
• 0xl3x1 / zeek-EternalSafety

  View on GitHub
  Zeek package for detecting the Eternal* exploits and a set of SMBv1 protocol violations.
  ☆19Aug 21, 2025Updated 5 months ago
• Tib3rius / LinEnum

  View on GitHub
  Scripted Local Linux Enumeration & Privilege Escalation Checks
  ☆19Mar 26, 2019Updated 6 years ago
• tesorion / TCERT-Cumulonimbus-UAL_Extractor

  View on GitHub
  Cumulonimbus-UAL_Extractor is a PowerShell based tool created by the Tesorion CERT team to help gather the Unified Audit Logging out of a…
  ☆21Oct 25, 2023Updated 2 years ago
• Ne0nd0g / scripts

  View on GitHub
  Miscellaneous for various things
  ☆21Nov 19, 2024Updated last year
• gmatuz / npm-initial-access

  View on GitHub
  Easy to extend initial access scenario to help with EDR testing on Linux and Mac
  ☆26Mar 20, 2022Updated 3 years ago
• MarkBaggett / werejugo

  View on GitHub
  Identifies physical locations where a laptop has been based upon wireless profiles and wireless data recorded in event logs
  ☆100Jun 2, 2021Updated 4 years ago
• jfmaes / Emulation-Workshop

  View on GitHub
  The repository accompanying the Buer Emulation workshop
  ☆23Aug 18, 2021Updated 4 years ago
• cisagov / icsnpp-enip

  View on GitHub
  Zeek Ethernet/IP and CIP Parser - CISA ICSNPP
  ☆26Nov 6, 2025Updated 3 months ago
• puzzlepeaches / sneaky_proxy

  View on GitHub
  Hiding your infrastructure from the boys in blue.
  ☆23Oct 18, 2021Updated 4 years ago
• QXJ6YW4 / SimpleImager

  View on GitHub
  Simple Imager has been created for performing live acquisition of Windows based systems in a forensically sound manner
  ☆30Oct 28, 2025Updated 3 months ago
• alwashmi / MasterParser

  View on GitHub
  MasterParser is a simple, all-in-one, digital forensics artifact parser
  ☆24Jul 9, 2021Updated 4 years ago
• joswr1ght / pptxurlcheck

  View on GitHub
  Parse a PowerPoint PPTX file, extracting all URL's from notes and slides, and test for validity
  ☆28Apr 4, 2025Updated 10 months ago
• SecarmaLabs / Indushell

  View on GitHub
  PoC C&C for the Industroyer malware
  ☆26Jun 30, 2017Updated 8 years ago
• ThreatResponse / aws_ir_plugins

  View on GitHub
  Core incident handling plugins for aws_ir cli, incident pony, and more.
  ☆21Jul 7, 2018Updated 7 years ago
• carnal0wnage / ApplicationWhitelistBypassTechniques

  View on GitHub
  A Catalog of Application Whitelisting Bypass Techniques
  ☆31Nov 11, 2014Updated 11 years ago
• kanecain1981 / SANS_Index_Helper_Tool

  View on GitHub
  Python command line tool used for generating GIAC Certification indexes.
  ☆29Jul 17, 2023Updated 2 years ago
• CounterHack / mandrake

  View on GitHub
  A rust utility for instrumenting binaries, used in Holiday Hack Challenge 2021
  ☆27Mar 9, 2022Updated 3 years ago
• piesecurity / docker-moloch

  View on GitHub
  A Docker container for Moloch based on ubuntu
  ☆23Jan 24, 2022Updated 4 years ago
• fireeye / brocapi

  View on GitHub
  Bro PCAP Processing and Tagging API
  ☆28Nov 9, 2017Updated 8 years ago