slacker007 / Bro-NetworkSecurityMonitoring
collection of bro and bash scripts that when run from the same directory on Linux distro with bro installed, will pull information such as active HTTP conns, FTP conns, etc. It also carves various types of files at the same time. They can be run against snort logs or pcaps
☆12Updated 8 years ago
Alternatives and similar repositories for Bro-NetworkSecurityMonitoring:
Users that are interested in Bro-NetworkSecurityMonitoring are comparing it to the libraries listed below
- Python script to pull various IOCs from PDFs☆15Updated 10 years ago
- Cyber Intel Management☆48Updated 7 years ago
- ☆37Updated 10 years ago
- Various Bro scripts☆96Updated 8 years ago
- brocon-15 scripts☆13Updated 7 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Transforms for the AlienVault OTX service☆39Updated 8 years ago
- Some IR notes☆73Updated 8 years ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 7 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- Mitre chopshop network decoder framework☆30Updated 8 years ago
- An ICAP Server with yara scanner for URL and content.☆59Updated 3 months ago
- A tool to convert MISP XML files (events and attributes) into graphs☆20Updated 7 years ago
- Just another tool to extract Indicator of compromise (ioc) from files☆29Updated 9 years ago
- Python API for URL Query☆35Updated 8 years ago
- Modern Honey Network App for Splunk☆50Updated 5 years ago
- A collection of bro_scripts and signatures☆26Updated 5 years ago
- A REST API server for yara event notifications. Mapping file hashes to yara signatures in Elasticsearch for easy hash lookup or finding h…☆19Updated 9 years ago
- integrating bro into yara☆33Updated 10 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- Log Examination Tool☆26Updated 8 years ago
- Automation for VirusTotal☆31Updated 8 years ago
- A set of templates for documenting threat intelligence☆74Updated 12 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- Open Development projects for TekDefense☆77Updated 8 years ago
- ThreatTracker is a Python script designed to monitor and generate alerts on given sets of indicators of compromise (IOCs) indexed by a se…☆68Updated 10 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Updated 8 years ago