slacker007 / Bro-NetworkSecurityMonitoringLinks
collection of bro and bash scripts that when run from the same directory on Linux distro with bro installed, will pull information such as active HTTP conns, FTP conns, etc. It also carves various types of files at the same time. They can be run against snort logs or pcaps
☆12Updated 9 years ago
Alternatives and similar repositories for Bro-NetworkSecurityMonitoring
Users that are interested in Bro-NetworkSecurityMonitoring are comparing it to the libraries listed below
Sorting:
- Various Bro scripts☆96Updated 9 years ago
- STIX Visualization Tool☆109Updated 7 years ago
- Scripts for Bro IDS and ELK Stack☆57Updated 10 years ago
- Network Forensics Bro scripts & pcap samples☆63Updated 11 years ago
- Cyber Intel Management☆49Updated 7 years ago
- Bro scripts to be shared with the community☆111Updated 12 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 9 years ago
- Tom's Honey Pot as seen in Applied Network Security Monitoring.☆26Updated 10 years ago
- Credential Phish Analysis and Automation☆97Updated 7 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆132Updated 9 years ago
- A collection of Bro scripts I've written☆41Updated 10 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆154Updated 4 months ago
- Modern Honey Network App for Splunk☆50Updated 6 years ago
- Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.☆52Updated 10 years ago
- A collection of bro_scripts and signatures☆27Updated 6 years ago
- ☆72Updated 3 years ago
- Collecting & Hunting for IOCs with gusto and style☆116Updated 7 years ago
- Contributed Bro Scripts☆30Updated 11 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- a Malware/Threat Analyst Desktop☆89Updated 10 years ago
- Small App for reading from MHN's hpfeeds broker and writing splunk logs☆10Updated 6 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- Mitre chopshop network decoder framework☆30Updated last week
- Some IR notes☆73Updated 9 years ago
- Hunting IOCs all day every day...☆86Updated 2 years ago
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 4 years ago
- Python script to pull various IOCs from PDFs☆15Updated 10 years ago
- CuckooMX is a project to automate analysis of files transmitted over SMTP (using the Cuckoo sandbox)☆40Updated 13 years ago
- A framework for receiving and redistributing abuse feeds☆124Updated 6 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆49Updated 11 years ago