Alternatives and similar repositories for netflowlabeler:

Users that are interested in netflowlabeler are comparing it to the libraries listed below

• stratosphereips / AIP
  The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.
  ☆30Updated 4 months ago
• hashlookup / PyHashlookup
  Python CLI and module for CIRCL hash lookup
  ☆12Updated last month
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 2 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆72Updated 8 months ago
• CESNET / NERD
  Network Entity Reputation Database
  ☆33Updated last month
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 2 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated last year
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆85Updated 6 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆29Updated 2 years ago
• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆17Updated 3 weeks ago
• MISP / misp-grafana
  A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB
  ☆17Updated last year
• corelight / pycommunityid
  A Python implementation of the Community ID flow hashing standard
  ☆23Updated last year
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆24Updated 8 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated 6 months ago
• t4d / HSRPwn
  Declare and keep up a rogue default-gateway in Cisco's HSRP default configuration
  ☆18Updated 7 years ago
• DCSO / balboa
  server for indexing and querying passive DNS observations
  ☆45Updated 2 weeks ago
• stairwell-inc / threat-research
  Repository of tools, YARA rules, and code-snippets from Stairwell's research team.
  ☆22Updated last year
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆30Updated last year
• D4-project / analyzer-d4-passivedns
  A Passive DNS backend and collector
  ☆31Updated 2 years ago
• Cisco-Talos / badgerboard
  ☆16Updated last year
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated 2 months ago
• cocaman / urlhaus
  ☆28Updated 7 years ago
• HASecuritySolutions / Sysmon-Manager
  This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler
  ☆12Updated 3 years ago
• DCSO / fever
  fast, extensible, versatile event router for Suricata's EVE-JSON format
  ☆50Updated 2 weeks ago
• Alir3z4 / ansible-suricata
  An Ansible playbook for deploying the Suricata intrusion detection system and fetching Snort rules with Oinkmaster.
  ☆15Updated 3 years ago