Alternatives and similar repositories for PCAP-Index

Users that are interested in PCAP-Index are comparing it to the libraries listed below

• SuperCowPowers / old-workbench-archived
  Workbench: A scalable python framework for security research and development teams.
  ☆92Updated 6 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆98Updated 11 years ago
• mschiffm / cppip
  The Compressed Pcap Packet Indexing Program
  ☆29Updated 10 years ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 12 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 11 years ago
• adulau / MalwareClassifier
  Malware Classifier From Network Captures
  ☆82Updated 8 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 5 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆44Updated 9 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 9 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 7 months ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• ncsa / bro-simple-scan
  ☆14Updated last year
• Phoul / yara_rules
  yara rules for crypto detection
  ☆31Updated 11 years ago
• anthonykasza / scratch_pad
  Bro Snippets
  ☆21Updated 11 years ago
• adulau / pdns-toolkit
  Passive DNS visualization and Passive DNS server toolkit
  ☆35Updated 13 years ago
• haka-security / hakabana
  Hakabana monitoring tool using Haka, ElastcSearch and Kibana
  ☆20Updated 11 years ago
• RamadhanAmizudin / python-icap-yara
  An ICAP Server with yara scanner for URL and content.
  ☆58Updated 11 months ago
• CIRCL / email-abuse
  Email Abuse - A Versatile Software for Email review, analysis and reporting
  ☆21Updated 10 years ago
• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 8 years ago
• binarlyhq / binarly-query
  Command-line Interface for Binar.ly
  ☆39Updated 8 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆42Updated 2 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 7 years ago
• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆41Updated 9 years ago
• EmergingThreats / et-luajit-scripts
  ☆75Updated 3 years ago
• Phillipmartin / snortsig
  ☆10Updated 9 years ago
• zeek / bro-plugins
  (OBSOLETE) Plugins for Bro
  ☆53Updated 8 years ago
• sec51 / clamav-yara
  Converts the Clamav Virus Database definitions to YARA rules [GOLANG]
  ☆52Updated 4 years ago