Alternatives and similar repositories for netflowlabeler:

Users that are interested in netflowlabeler are comparing it to the libraries listed below

• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 2 years ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• CyCat-project / cycat-service
  CyCAT.org API back-end server including crawlers
  ☆30Updated 2 years ago
• hashlookup / PyHashlookup
  Python CLI and module for CIRCL hash lookup
  ☆12Updated 2 weeks ago
• HASecuritySolutions / Sysmon-Manager
  This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler
  ☆12Updated 3 years ago
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 2 years ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆29Updated 4 years ago
• opencybersecurityalliance / firepit
  Firepit - STIX Columnar Storage
  ☆16Updated 8 months ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆43Updated 2 years ago
• MISP / misp-airgap
  Scripts to deploy and update MISP in air-gapped environments
  ☆17Updated last week
• adulau / pdns-qof-server
  Passive DNS server interface compliant to "Common Output Format"
  ☆10Updated 8 years ago
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• ninoseki / abuse_whois
  Yet another way to find where to report an abuse
  ☆31Updated 3 weeks ago
• eCrimeLabs / cratos-fastapi
  The CRATOS proxy API integrates with your MISP instance and allows to extract indicators that can be consumed by security components such…
  ☆13Updated 3 weeks ago
• tiburon-security / sriracha-iq
  Rapid cybersecurity toolkit based on Elastic in Docker. Designed to quickly build elastic-based environments to analyze and execute threa…
  ☆18Updated 4 years ago
• mitre / human
  Caldera plugin to deploy "humans" to emulate user behavior on systems
  ☆27Updated 9 months ago
• log2timeline / dfdatetime
  Digital Forensics date and time
  ☆23Updated last month
• uforia / exitgather
  Tool for automatic list generation of known TOR and VPN exit nodes
  ☆30Updated last year
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated 9 months ago
• OTRF / sigma
  Generic Signature Format for SIEM Systems
  ☆14Updated 3 years ago
• SecurityRiskAdvisors / sra-taxii2-server
  TAXII 2.0 Server implemented in Node JS with MongoDB backend
  ☆12Updated 2 years ago
• stratosphereips / AIP
  The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.
  ☆31Updated 3 months ago
• t4d / HSRPwn
  Declare and keep up a rogue default-gateway in Cisco's HSRP default configuration
  ☆18Updated 7 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆24Updated 8 years ago
• 3c7 / infrastructure-tracking-schema
  ☆24Updated 2 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated last month
• sebdraven / IOCmite
  Create dataset for suricata with indicators of MISP instances and add sightings in MISP if an indicator of dataset generates an alert
  ☆37Updated 2 years ago
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 7 years ago