taterhead / PCAP-Index
Set of scripts to index PCAP files and retrieve packets
☆14Updated 9 years ago
Alternatives and similar repositories for PCAP-Index:
Users that are interested in PCAP-Index are comparing it to the libraries listed below
- Workbench: A scalable python framework for security research and development teams.☆91Updated 5 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Time-Machine Dynamic Bulk Packet Recorder☆36Updated last year
- Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files☆44Updated 10 months ago
- ☆10Updated 9 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- Bro Snippets☆21Updated 10 years ago
- The Compressed Pcap Packet Indexing Program☆27Updated 9 years ago
- ☆14Updated 11 months ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 8 years ago
- yara rules for crypto detection☆30Updated 10 years ago
- Unpack MIME attachments from a file and check them against virustotal.com☆45Updated 9 years ago
- ☆75Updated 3 years ago
- Python bindings to libhtp☆30Updated 4 years ago
- Detect Phishing with Bro IDS☆18Updated 8 years ago
- integrating bro into yara☆33Updated 10 years ago
- Hakabana monitoring tool using Haka, ElastcSearch and Kibana☆20Updated 10 years ago
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- Debian and Red Hat packaging for SIE DNS sensor☆15Updated last year
- Passive DNS visualization and Passive DNS server toolkit☆35Updated 13 years ago
- scan-detection policies for bro☆15Updated 2 months ago
- This python scripts can calculate the WHOIS Similarity Distance between two given domains.☆29Updated 2 years ago
- Logging plugin to bro to send logs to a Kafka broker☆20Updated 7 years ago
- ☆28Updated 8 years ago
- ☆19Updated 6 years ago
- Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TC…☆31Updated 6 years ago
- Network timing evaluation used to detect beacons, works with argus flow as the source☆20Updated 8 years ago
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- DEPRECATED USE v3!☆59Updated 9 years ago
- Cli interface to threatcrowd.org☆19Updated 7 years ago