secureworks / flowsynthLinks
a network packet capture compiler
☆202Updated 3 years ago
Alternatives and similar repositories for flowsynth
Users that are interested in flowsynth are comparing it to the libraries listed below
Sorting:
- Suricata Extreme Performance Tuning guide☆213Updated 7 years ago
- ☆174Updated 4 years ago
- Extract files from network traffic with Zeek.☆102Updated 5 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆182Updated 2 years ago
- Rule sets for Sagan☆105Updated 4 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated 3 months ago
- Passive Real-time Asset Detection System☆248Updated last year
- Passive DNS collection using Zeek☆182Updated 2 years ago
- Honeynet Project generic authenticated datafeed protocol☆216Updated 2 years ago
- Web service for scanning pcaps with snort☆109Updated 7 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago
- Suricata Extreme Performance Tuning guide - Mark II☆120Updated 7 years ago
- Wireshark plugin to display Suricata analysis info☆95Updated 3 years ago
- Bro scripts to be shared with the community☆111Updated 12 years ago
- Ready to run scripts for network analysis☆88Updated 7 months ago
- ☆205Updated 2 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆175Updated 4 years ago
- ☆75Updated 3 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆501Updated last month
- Various Bro scripts☆96Updated 9 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆142Updated last week
- CIFv3 DeploymentKit☆64Updated 5 years ago
- A RESTful API frontend for Stenographer☆54Updated 2 years ago
- Alienvault ossim☆123Updated 8 months ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings☆122Updated 4 years ago
- Threat Intelligence APIs☆281Updated 2 years ago