sundruid / muonfp
MuonFP is an enterprise ready, TCP passive fingerprinter written in Rust that has no external dependencies such as WireShark or other open source software.
☆10Updated last month
Related projects ⓘ
Alternatives and complementary repositories for muonfp
- Can you pay the ransom in your country?☆13Updated 10 months ago
- ☆24Updated 2 years ago
- Pythonic way to work with the galaxies defined there: https://github.com/MISP/misp-galaxy☆19Updated 2 months ago
- Setting up a training environment for MISP☆11Updated last year
- CyCAT.org taxonomies☆14Updated 3 years ago
- A mapping project between tags (annotations, labels) and domain names☆11Updated 6 months ago
- Converting data from services like Censys and Shodan to a common data model☆48Updated 2 months ago
- Stupid Simple Detection Testing☆11Updated 8 months ago
- Tool for automatic list generation of known TOR and VPN exit nodes☆29Updated 10 months ago
- CSIRT Tooling: Best Practices in Developing, Maintaining and Distributing Open Source Tools☆16Updated 2 years ago
- Integration between MISP platform and McAfee MVISION EDR☆14Updated 2 years ago
- A tool for studying JavaScript malware.☆13Updated 2 weeks ago
- NTFS file system specimens☆14Updated last year
- The Purpose of this research tool is to provide a Python client into RiskIQ API services.☆22Updated 3 years ago
- A happy place for detection engineers, purple teamers and threat hunters focusing on macOS.☆20Updated 2 years ago
- DFF (Digital Forensics Framework)☆10Updated 3 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆34Updated last year
- Tools related to work with Attack Flow (https://github.com/center-for-threat-informed-defense/attack-flow)☆43Updated 2 years ago
- A DFVFS Backed Forensic Viewer☆39Updated 4 years ago
- Windows file metadata / forensic tool.☆15Updated last month
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- A few quick recipes for those that do not have much time during the day☆21Updated 2 weeks ago
- CIRCL system forensic tools or a jumble of tools to support forensic☆42Updated last year
- Automation script to download JSON MISP files from a SFTP server and import them via API to a MISP instance.☆16Updated last year
- DNS Dashboard for hunting and identifying beaconing☆14Updated 4 years ago
- MasterParser is a simple, all-in-one, digital forensics artifact parser☆23Updated 3 years ago
- ☆14Updated 6 years ago
- MISP sighting server is a fast sighting server to store and look-up sightings on attributes (network indicators, file hashes, system indi…☆15Updated 10 months ago
- Declare and keep up a rogue default-gateway in Cisco's HSRP default configuration☆17Updated 7 years ago