slacker007 / Bro-NetworkSecurityMonitoringLinks
collection of bro and bash scripts that when run from the same directory on Linux distro with bro installed, will pull information such as active HTTP conns, FTP conns, etc. It also carves various types of files at the same time. They can be run against snort logs or pcaps
☆12Updated 9 years ago
Alternatives and similar repositories for Bro-NetworkSecurityMonitoring
Users that are interested in Bro-NetworkSecurityMonitoring are comparing it to the libraries listed below
Sorting:
- Various Bro scripts☆97Updated 9 years ago
- Scripts for Bro IDS and ELK Stack☆57Updated 9 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆134Updated 9 years ago
- Network Forensics Bro scripts & pcap samples☆63Updated 11 years ago
- STIX Visualization Tool☆109Updated 7 years ago
- Cyber Intel Management☆49Updated 7 years ago
- Bro scripts to be shared with the community☆111Updated 12 years ago
- Credential Phish Analysis and Automation☆97Updated 7 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 9 years ago
- a Malware/Threat Analyst Desktop☆89Updated 9 years ago
- A collection of Bro scripts I've written☆41Updated 10 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆153Updated 2 months ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆82Updated 9 years ago
- ☆37Updated 11 years ago
- IOC Management and Visualization Tool☆47Updated 2 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 7 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- ☆72Updated 3 years ago
- CuckooMX is a project to automate analysis of files transmitted over SMTP (using the Cuckoo sandbox)☆41Updated 13 years ago
- (Unofficial) Python API for https://malwr.com/☆62Updated 8 years ago
- Yara rules I've written☆10Updated 9 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 3 years ago
- A collection of bro_scripts and signatures☆27Updated 6 years ago
- A modular Python application to pull intelligence about malicious files☆122Updated 4 years ago
- Python script to pull various IOCs from PDFs☆15Updated 10 years ago
- Some IR notes☆73Updated 9 years ago
- Hunting IOCs all day every day...☆86Updated last year
- An ICAP Server with yara scanner for URL and content.☆58Updated 8 months ago