slacker007 / Bro-NetworkSecurityMonitoringLinks
collection of bro and bash scripts that when run from the same directory on Linux distro with bro installed, will pull information such as active HTTP conns, FTP conns, etc. It also carves various types of files at the same time. They can be run against snort logs or pcaps
☆12Updated 9 years ago
Alternatives and similar repositories for Bro-NetworkSecurityMonitoring
Users that are interested in Bro-NetworkSecurityMonitoring are comparing it to the libraries listed below
Sorting:
- Various Bro scripts☆97Updated 9 years ago
- STIX Visualization Tool☆109Updated 7 years ago
- Bro scripts to be shared with the community☆111Updated 12 years ago
- Network Forensics Bro scripts & pcap samples☆63Updated 11 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆134Updated 9 years ago
- Scripts for Bro IDS and ELK Stack☆57Updated 10 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 9 years ago
- Cyber Intel Management☆49Updated 7 years ago
- Credential Phish Analysis and Automation☆97Updated 7 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆154Updated 3 months ago
- ☆72Updated 3 years ago
- Tom's Honey Pot as seen in Applied Network Security Monitoring.☆26Updated 10 years ago
- Hunting IOCs all day every day...☆86Updated 2 years ago
- A collection of bro_scripts and signatures☆27Updated 6 years ago
- a Malware/Threat Analyst Desktop☆89Updated 10 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆82Updated 9 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆182Updated 2 years ago
- Harbinger Threat Intelligence☆82Updated 9 years ago
- A collection of Bro scripts I've written☆41Updated 10 years ago
- Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.☆52Updated 10 years ago
- Bro stuff.☆12Updated 9 years ago
- Imports Alienvault OTX pulses to a MISP instance☆53Updated 4 years ago
- ☆37Updated 11 years ago
- Spam Honeypot with Intelligent Virtual Analyzer☆138Updated 6 months ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆122Updated 4 years ago
- Extract files from network traffic with Zeek.☆102Updated 5 years ago
- Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect int…☆148Updated 11 years ago
- A tool to convert MISP XML files (events and attributes) into graphs☆20Updated 8 years ago
- Contributed Bro Scripts☆30Updated 11 years ago