satta / gommunityidLinks
Go implementation of the Community ID flow hashing standard
☆20Updated 3 months ago
Alternatives and similar repositories for gommunityid
Users that are interested in gommunityid are comparing it to the libraries listed below
Sorting:
- Suricata rule and intel index☆31Updated 3 weeks ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- Recog-Go: Pattern Recognition using Rapid7 Recog☆111Updated 2 years ago
- How to Zeek Sysmon Logs!☆102Updated 3 years ago
- Zeek package to generate a SMB client fingerprint☆27Updated 5 years ago
- This repository contains tools used by 401trg.☆20Updated 4 years ago
- A lightweight tool to score network traffic and flag anomalies☆123Updated 11 months ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆54Updated 3 months ago
- Bro analyzer that detects Google's QUIC protocol☆10Updated 4 years ago
- Golang based web service to scan files with yara rules☆26Updated 8 years ago
- A Go implementation of JARM☆119Updated 3 years ago
- Complementary material to presentations at events☆9Updated 2 years ago
- A cyber threat intelligence server based on TAXII 2 and written in Golang☆30Updated 5 years ago
- Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.☆23Updated 4 years ago
- YETI (Your Everyday Threat Intelligence) Integration to Elastic Stack☆16Updated 4 years ago
- ☆41Updated 2 years ago
- Bro integration with osquery☆15Updated 2 years ago
- simple YARA-based IOC scanner☆169Updated this week
- Collect autorun records from running system☆60Updated 3 years ago
- Check IOC provided by a MISP instance on Suricata events☆18Updated 6 years ago
- A Spicy protocol analyzer for WireGuard☆29Updated 4 years ago
- APIs for generating STIX 2.1 and TAXII 2.1 messages with Go (Golang)☆53Updated 8 months ago
- enpoint detection / live analysis & sandbox host / signatures quality test☆44Updated 4 years ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Updated 2 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated 10 months ago
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- ☆12Updated 3 years ago
- DHCP Fingerprinting☆29Updated 4 years ago
- Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert☆36Updated 2 years ago
- intelligence-icons is a collection of icons and diagrams for building training and marketing materials around Intelligence sharing; inclu…☆41Updated 6 years ago