secureworks / flowsynth
a network packet capture compiler
☆197Updated 2 years ago
Alternatives and similar repositories for flowsynth:
Users that are interested in flowsynth are comparing it to the libraries listed below
- Suricata Extreme Performance Tuning guide☆207Updated 6 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆472Updated 2 months ago
- ☆169Updated 3 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated last year
- Extract files from network traffic with Zeek.☆101Updated 4 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆282Updated last year
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- Rule sets for Sagan☆102Updated 4 years ago
- Web service for scanning pcaps with snort☆108Updated 6 years ago
- Passive Real-time Asset Detection System☆233Updated 9 months ago
- ☆202Updated last year
- Alienvault ossim☆121Updated last month
- Cyber Defence Monitoring Course Suite :: Suricata, Arkime (and others in the past)☆102Updated 9 months ago
- Suricata Extreme Performance Tuning guide - Mark II☆115Updated 6 years ago
- Deception based detection techniques mapped to the MITRE’s ATT&CK framework☆289Updated 7 years ago
- Wireshark plugin to display Suricata analysis info☆93Updated 3 years ago
- ☆308Updated 7 years ago
- Sandia Cyber Omni Tracker (SCOT)☆246Updated 4 months ago
- Vulnerability Data in ES☆146Updated 7 years ago
- ** README ** This repo has MOVED to https://github.com/quadrantsec/sagan☆228Updated 4 years ago
- Bro scripts written by CrowdStrike Services☆146Updated 3 years ago
- A Simple QUEry and Report Tool☆142Updated 5 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- Bro IDS programs collection.☆146Updated 5 years ago
- Mapping NSM rules to MITRE ATT&CK☆70Updated 4 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆175Updated 3 years ago
- Passive DNS collection using Zeek☆182Updated last year
- Threat Intelligence APIs☆276Updated last year
- A web-based tool to assist the work of the intuitive threat analysts.☆112Updated 6 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆121Updated 3 years ago