stratosphereips / netflowlabeler

Related projects ⓘ

Alternatives and complementary repositories for netflowlabeler

• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• COSSAS / Certitude
  CERTITUDE - A python package to classify malicious URLs
  ☆20Updated 2 years ago
• t4d / HSRPwn
  Declare and keep up a rogue default-gateway in Cisco's HSRP default configuration
  ☆17Updated 7 years ago
• cudeso / misp-training-environment
  Setting up a training environment for MISP
  ☆11Updated last year
• hashlookup / PyHashlookup
  Python CLI and module for CIRCL hash lookup
  ☆12Updated 3 weeks ago
• MISP / misp-grafana
  A real-time Grafana dashboard using MISP ZeroMQ message queue and InfluxDB
  ☆16Updated 8 months ago
• theparanoids / spicy-noise
  A Spicy protocol analyzer for WireGuard
  ☆28Updated 4 years ago
• telekom-security / ewsposter
  collect logs and alerts from 27 honeypots and send it to backed (eg peba, geba), hpfeeds, influxdb or jSON file.
  ☆16Updated last year
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆43Updated 10 months ago
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated 6 months ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆69Updated 4 months ago
• CESNET / NERD
  Network Entity Reputation Database
  ☆33Updated 2 weeks ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• cisagov / flare-misp-service
  Automate the regular transfer of AIS data into a MISP Server
  ☆6Updated 5 months ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• stratosphereips / AIP
  The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.
  ☆32Updated last week
• D4-project / analyzer-d4-passivedns
  A Passive DNS backend and collector
  ☆31Updated 2 years ago
• SigmaHQ / Detection-Rule-License
  Detection Rule License (DRL)
  ☆15Updated last year
• OISF / suricata-trafficid
  Application and service identification rules for Suricata
  ☆18Updated 2 years ago
• gnxsecurity / gnx-threat-intelligence
  A commercial grade threat intelligence feed thats validated and updated every half hour.
  ☆20Updated last year
• csirt-tooling-org / csirt-tooling-best-practices
  CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools
  ☆16Updated 2 years ago
• rommelfs / scanner
  nmap/ndiff based scanner with template based notification system in case of infrastructure changes
  ☆18Updated 6 years ago
• adulau / hashlookup-server
  Fast lookup server for NSRL and other hash database used in digital forensic
  ☆41Updated 2 years ago
• HASecuritySolutions / Sysmon-Manager
  This repo contains information on how to auto deploy Sysmon via GPO and Task Scheduler
  ☆12Updated 3 years ago
• tenzir / zeek-tenzir
  Enables Zeek to communicate with Tenzir
  ☆11Updated last year
• imp0rtp3 / js-yara-rules
  Yara rules for malicious javascript files from public repositories or written by me.
  ☆12Updated 3 years ago
• dhoelzer / DAD
  Log aggregation, analysis, alerting and correlation for Windows, Syslog and text based logs.
  ☆24Updated 8 years ago
• ex0dus-0x / confine
  Small container runtime for threat detection
  ☆11Updated 2 years ago
• netmoth / netmoth
  🚀 A lightweight, fast, and comprehensive solution for traffic analysis and intrusion detection.
  ☆20Updated this week
• Velocidex / SQLiteHunter
  Hunt for SQLite files used by various applications
  ☆10Updated 2 weeks ago