slacker007 / Bro-NetworkSecurityMonitoringLinks
collection of bro and bash scripts that when run from the same directory on Linux distro with bro installed, will pull information such as active HTTP conns, FTP conns, etc. It also carves various types of files at the same time. They can be run against snort logs or pcaps
☆12Updated 9 years ago
Alternatives and similar repositories for Bro-NetworkSecurityMonitoring
Users that are interested in Bro-NetworkSecurityMonitoring are comparing it to the libraries listed below
Sorting:
- Various Bro scripts☆96Updated 9 years ago
- Scripts for Bro IDS and ELK Stack☆57Updated 10 years ago
- Cyber Intel Management☆50Updated 8 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆98Updated 9 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆134Updated 10 years ago
- Network Forensics Bro scripts & pcap samples☆63Updated 11 years ago
- STIX Visualization Tool☆110Updated 7 years ago
- Credential Phish Analysis and Automation☆98Updated 7 years ago
- CuckooMX is a project to automate analysis of files transmitted over SMTP (using the Cuckoo sandbox)☆41Updated 13 years ago
- a Malware/Threat Analyst Desktop☆89Updated 10 years ago
- A collection of bro_scripts and signatures☆27Updated 6 years ago
- Python script to pull various IOCs from PDFs☆15Updated 11 years ago
- Modern Honey Network App for Splunk☆50Updated 6 years ago
- Threat Intelligence distribution☆31Updated 10 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆38Updated 8 years ago
- Bro scripts to be shared with the community☆111Updated 12 years ago
- Harbinger Threat Intelligence☆83Updated 10 years ago
- ☆72Updated 4 years ago
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 4 years ago
- Small App for reading from MHN's hpfeeds broker and writing splunk logs☆10Updated 6 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆157Updated 7 months ago
- Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.☆52Updated 10 years ago
- Mitre chopshop network decoder framework☆30Updated 3 months ago
- A tool to convert MISP XML files (events and attributes) into graphs☆20Updated 8 years ago
- Transforms for the AlienVault OTX service☆39Updated 9 years ago
- ☆37Updated 11 years ago
- integrating bro into yara☆33Updated 11 years ago
- Hunting IOCs all day every day...☆87Updated 2 years ago
- A set of Maltego transforms for VirusTotal Public API v2.0. This set has the added functionality of caching queries on a daily basis to s…☆82Updated 10 years ago
- Yara rules I've written☆10Updated 10 years ago