stamparm / maltrailLinks
Malicious traffic detection system
☆6,981Updated this week
Alternatives and similar repositories for maltrail
Users that are interested in maltrail are comparing it to the libraries listed below
Sorting:
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,707Updated last week
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,085Updated 4 years ago
- Open Source Vulnerability Management Platform☆5,415Updated last week
- The pattern matching swiss knife☆8,791Updated this week
- Loki - Simple IOC and YARA Scanner☆3,538Updated 6 months ago
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆4,676Updated 4 years ago
- OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…☆4,722Updated 4 months ago
- Repository of yara rules☆4,401Updated last year
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆6,872Updated this week
- an awesome list of honeypot resources☆9,364Updated last month
- A swiss army knife for pentesting networks☆8,732Updated last year
- A Suricata based IDS/IPS/NSM distro☆1,536Updated 9 months ago
- Complete Mandiant Offensive VM (Commando VM), a fully customizable Windows-based pentesting virtual machine distribution. commandovm@mand…☆7,229Updated 8 months ago
- Six Degrees of Domain Admin☆10,187Updated 2 weeks ago
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,891Updated 11 months ago
- Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/☆5,566Updated this week
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆6,639Updated last week
- Impacket is a collection of Python classes for working with network protocols.☆14,328Updated last week
- Empire is a PowerShell and Python post-exploitation agent.☆7,618Updated 5 years ago
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆5,715Updated this week
- GRR Rapid Response: remote live forensics for incident response☆4,896Updated last week
- ZMap is a fast single packet network scanner designed for Internet-wide network surveys.☆5,783Updated 2 weeks ago
- The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb☆7,781Updated 2 years ago
- Advanced vulnerability scanning with Nmap NSE☆3,615Updated 8 months ago
- PowerSploit - A PowerShell Post-Exploitation Framework☆12,344Updated 4 years ago
- WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.☆5,672Updated 5 months ago
- A curated list of awesome YARA rules, tools, and people.☆3,814Updated 2 months ago
- Pupy is an opensource, cross-platform (Windows, Linux, OSX, Android) C2 and post-exploitation framework written in python and C☆8,706Updated last year
- Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…☆5,825Updated last week
- Modern Honey Network☆2,453Updated 6 months ago