ssallys / p3

Related projects ⓘ

Alternatives and complementary repositories for p3

• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• packetloop / packetpig
  Packetpig - Open Source Big Data Security Analytics
  ☆299Updated 6 years ago
• eraclitux / machine-learning-netflow
  Ipython notebook that illustrates effectiveness of machine learning algorithms in anomaly detection of netflow data (inbound/outbound DDo…
  ☆78Updated 7 years ago
• zeek / bro-plugins
  (OBSOLETE) Plugins for Bro
  ☆53Updated 7 years ago
• zeek / zeek-netcontrol
  Connectors for the Zeek NetControl framework
  ☆19Updated 2 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆35Updated 10 months ago
• RIPE-NCC / hadoop-pcap
  Hadoop library to read packet capture (PCAP) files
  ☆208Updated last year
• g-clef / KafkaLogger
  Logging plugin to bro to send logs to a Kafka broker
  ☆20Updated 6 years ago
• kspviswa / dpi-enabled-ovs
  Extending OVS with DPI functionalities
  ☆16Updated 9 years ago
• OpenSOC / opensoc-ui
  User interface for OpenSOC
  ☆100Updated 9 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 6 months ago
• pauloangelo / hogzilla
  Hogzilla is an Intrusion Detection System (IDS) supported by Snort, Apache Spark, HBase and libnDPI, which provides Network Anomaly Detec…
  ☆28Updated 6 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• caesar0301 / pcapdpi
  Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…
  ☆23Updated 8 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 3 years ago
• hillar / vagrant_moloch_bro_suricata
  vagrant multi-machine: Moloch, Bro,Suricata,ElasticSearch,Kibana
  ☆41Updated 10 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 8 years ago
• taterhead / PCAP-Index
  Set of scripts to index PCAP files and retrieve packets
  ☆14Updated 9 years ago
• anthonykasza / scratch_pad
  Bro Snippets
  ☆21Updated 10 years ago
• FredrikAppelros / pcap-reassembler
  Reassembles UDP/TCP packets into application layer messages.
  ☆42Updated 6 years ago
• vishal1991 / Network-Forensics
  • Packet capture (PCAP) file analysis to analyze traffic sent by malicious IP address.
  ☆12Updated 9 years ago
• radicallyopensecurity / anti-ddos
  DDOS Detection and Mitigation Appliance
  ☆65Updated 7 years ago
• zeek / bro-scripts
  Misc. Bro scripts
  ☆63Updated 7 years ago
• JustinAzoff / netflow-indexer
  A program that uses xapian to index the flat file databases used by nfdump or flow-tools
  ☆36Updated 6 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• deepfield / dnsflow
  Lightweight DNS telemetry
  ☆54Updated 2 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• OpenSOC / opensoc-streaming
  Extensible set of Storm topologies and topology attributes for streaming, enriching, indexing, and storing telemetry in Hadoop.
  ☆131Updated 11 months ago
• CSIRT-MU / Stream4Flow
  A framework for the real-time network traffic analysis based on world-leading technologies for distributed stream processing, network tra…
  ☆101Updated 3 years ago