Alternatives and similar repositories for maltrail

Users that are interested in maltrail are comparing it to the libraries listed below

• zeek / zeek
  Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
  ☆7,301Updated this week
• ossec / ossec-hids
  OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…
  ☆4,971Updated 10 months ago
• arkime / arkime
  Arkime is an open source, large scale, full packet capturing, indexing, and database system.
  ☆7,213Updated last week
• ivre / ivre
  Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…
  ☆3,890Updated last week
• cuckoosandbox / cuckoo
  Cuckoo Sandbox is an automated dynamic malware analysis system
  ☆5,874Updated 3 years ago
• infobyte / faraday
  Open Source Vulnerability Management Platform
  ☆6,058Updated this week
• VirusTotal / yara
  The pattern matching swiss knife
  ☆9,263Updated 3 weeks ago
• pwnlandia / mhn
  Modern Honey Network
  ☆2,467Updated last year
• andresriancho / w3af
  w3af: web application attack and audit framework, the open source web vulnerability scanner.
  ☆4,830Updated 2 years ago
• MISP / MISP
  MISP (core software) - Open Source Threat Intelligence and Sharing Platform
  ☆6,045Updated this week
• google / grr
  GRR Rapid Response: remote live forensics for incident response
  ☆5,004Updated 6 months ago
• paralax / awesome-honeypots
  an awesome list of honeypot resources
  ☆9,953Updated 8 months ago
• commixproject / commix
  Automated All-in-One OS Command Injection Exploitation Tool.
  ☆5,547Updated this week
• volatilityfoundation / volatility
  An advanced memory forensics framework
  ☆7,912Updated 7 months ago
• gamelinux / passivedns
  A network sniffer that logs all DNS server replies for use in a passive DNS setup
  ☆1,731Updated last year
• Neo23x0 / Loki
  Loki - Simple IOC and YARA Scanner
  ☆3,693Updated last month
• cowrie / cowrie
  Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/
  ☆6,031Updated this week
• wazuh / wazuh
  Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.
  ☆14,224Updated this week
• OISF / suricata
  Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…
  ☆5,850Updated this week
• honeytrap / honeytrap
  Advanced Honeypot framework.
  ☆1,293Updated 2 years ago
• Arachni / arachni
  Web Application Security Scanner Framework
  ☆3,970Updated 6 months ago
• hslatman / awesome-threat-intelligence
  A curated list of Awesome Threat Intelligence resources
  ☆9,476Updated 2 months ago
• meirwah / awesome-incident-response
  A curated list of tools for incident response
  ☆8,652Updated last year
• gophish / gophish
  Open-Source Phishing Toolkit
  ☆13,369Updated last year
• firehol / blocklist-ipsets
  ipsets dynamically updated with firehol's update-ipsets.sh script
  ☆3,669Updated this week
• sullo / nikto
  Nikto web server scanner
  ☆9,889Updated 3 weeks ago
• SpiderLabs / Responder
  Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv…
  ☆4,795Updated 5 years ago
• Ne0nd0g / merlin
  Merlin is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in golang.
  ☆5,452Updated 8 months ago
• TheHive-Project / TheHive
  TheHive is a Collaborative Case Management Platform, now distributed as a commercial version
  ☆3,872Updated 4 months ago
• iagox86 / dnscat2
  ☆3,780Updated last year