stamparm / maltrailLinks
Malicious traffic detection system
☆8,166Updated last week
Alternatives and similar repositories for maltrail
Users that are interested in maltrail are comparing it to the libraries listed below
Sorting:
- Open Source Vulnerability Management Platform☆6,129Updated this week
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,916Updated last week
- A curated list of Awesome Threat Intelligence resources☆9,653Updated last week
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆6,104Updated this week
- Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and sys…☆15,159Updated 2 months ago
- A curated list of tools for incident response☆8,764Updated last year
- Domain name permutation engine for detecting homograph phishing attacks, typo squatting, and brand impersonation☆5,564Updated 9 months ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,109Updated 4 years ago
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆7,426Updated this week
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆7,278Updated this week
- Loki - Simple IOC and YARA Scanner☆3,709Updated 2 weeks ago
- an awesome list of honeypot resources☆10,082Updated 9 months ago
- GRR Rapid Response: remote live forensics for incident response☆5,026Updated last month
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆5,013Updated last week
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆3,039Updated 3 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,325Updated last week
- Automated Adversary Emulation Platform☆6,701Updated this week
- Fast Incident Response☆1,983Updated 2 weeks ago
- Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.☆5,479Updated 9 months ago
- Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices☆12,021Updated last week
- Modern Honey Network☆2,468Updated last year
- TheHive is a Collaborative Case Management Platform, now distributed as a commercial version☆3,876Updated 6 months ago
- A Suricata based NDR distribution☆1,586Updated 4 months ago
- Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/☆6,123Updated last week
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,848Updated 2 years ago
- Modular and decentralised honeypot☆2,743Updated 2 weeks ago
- A curated list of awesome YARA rules, tools, and people.☆4,125Updated 10 months ago
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,512Updated 3 months ago
- PcapXray - A Network Forensics Tool - To visualize a Packet Capture offline as a Network Diagram including device identification, highli…☆1,840Updated 3 years ago
- Main Sigma Rule Repository☆10,071Updated this week