stratosphereips / StratosphereWindowsIpsLinks
The Stratosphere IPS is a free software IPS that uses network behavior to detect and block malicious actions.
☆33Updated 9 years ago
Alternatives and similar repositories for StratosphereWindowsIps
Users that are interested in StratosphereWindowsIps are comparing it to the libraries listed below
Sorting:
- Unpack MIME attachments from a file and check them against virustotal.com☆44Updated 9 years ago
- Passive Network Audit Framework☆32Updated 7 years ago
- NTP logger/honeypot☆54Updated 11 years ago
- Based on the Volatility framework, this script will run various plugins as well as create a timeline, or use YARA/ClamAV/VirusTotal to fi…☆48Updated 8 years ago
- BTG's purpose is to make fast and efficient search on IOC☆70Updated 6 years ago
- a low-interaction honeypot☆94Updated 8 years ago
- The Intelligent Honey Net Project attempts to create actionable information from honeypots☆63Updated 9 years ago
- A warehouse for your malware☆133Updated 12 years ago
- Cli interface to threatcrowd.org☆19Updated 8 years ago
- Network sinkhole for isolated malware analysis☆40Updated 7 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆72Updated 6 years ago
- Plugins to add funtionality to ProcDOT. http://www.procdot.com☆23Updated last year
- Cuckoo Sandbox Local Maltego Transforms Project☆49Updated 11 years ago
- An ICAP Server with yara scanner for URL and content.☆58Updated 8 months ago
- ☆49Updated 9 years ago
- Data Exfiltration and Command Execution via AAAA Records☆67Updated 9 years ago
- A powershell script for creating a Windows honeyport.☆89Updated 5 months ago
- ☆46Updated 8 years ago
- Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.☆97Updated 10 years ago
- Spacebin is a proof-of-concept malware that exfiltrates data (from No Direct Internet Access environments) via triggering AV on the endpo…☆88Updated 8 years ago
- Fast Evidence Collector Toolkit is an incident response toolkit to collect evidences on a suspicious windows computer☆42Updated 5 years ago
- Queries to parse sysmon event log file with microsoft logparser☆56Updated 10 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 9 years ago
- Passive DNS V2☆60Updated 11 years ago
- Metadata Inspection Database Alerting System☆42Updated 12 years ago
- Basic Maltego Transforms for looking up SSL certs and IP info from censys.io☆41Updated 8 years ago
- OS Fingerprint Obfuscation for modern Linux Kernels☆77Updated last year
- A Windows priviledge escalation tool (abusing race conditions)☆79Updated 9 years ago
- Python tool and library to help analyze files during malware triage and analysis.☆78Updated 5 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆82Updated 9 years ago