staaldraad / fastfluxanalysis
Scripts to detect Fast-Flux and DGA using DNS query responses
☆42Updated 7 years ago
Related projects ⓘ
Alternatives and complementary repositories for fastfluxanalysis
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Passive DNS V2☆62Updated 10 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆42Updated 3 years ago
- Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching☆33Updated 8 years ago
- Honeypot log processor to create OTX Pulse entries☆29Updated 10 months ago
- CVE Builder script that generates STIX formatted Exploit Target objects☆18Updated 8 years ago
- Normalizer for honeypot data.☆45Updated 9 years ago
- Command-line Interface for Binar.ly☆37Updated 7 years ago
- ☆22Updated 6 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆49Updated 7 years ago
- Quick proof of concept to detect a Kippo SSH honeypot instance externally☆56Updated 9 years ago
- Detect kerberos attacks in pcap files☆27Updated 8 years ago
- FastIR Agent is a Windows service to execute FastIR Collector on demand☆14Updated 7 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆44Updated 5 years ago
- An ICAP Server with yara scanner for URL and content.☆57Updated 3 years ago
- AYY LMAO☆21Updated 8 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Updated 7 years ago
- ☆19Updated 6 years ago
- Efficient clustering of MASSCAN results☆12Updated 7 years ago
- Ender of Fast-Flux malicious domains.☆26Updated 10 years ago
- Download all packet captures from http://malware-traffic-analysis.net/☆19Updated 10 years ago
- ☆16Updated 9 years ago
- ☆27Updated 6 years ago
- Spam Honeypot with Intelligent Virtual Analyzer☆10Updated 8 years ago
- Basic gui to run and display nmap scan results. Just a POC so far.☆31Updated 11 years ago
- Multiple rules for yara-project for detect compiler/packer/protector☆33Updated 4 years ago
- A tool to generate Snort rules based on public IP reputation data☆56Updated 11 years ago