Alternatives and similar repositories for PCAP-Index:

Users that are interested in PCAP-Index are comparing it to the libraries listed below

• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 7 years ago
• mschiffm / cppip
  The Compressed Pcap Packet Indexing Program
  ☆27Updated 9 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆35Updated last year
• SuperCowPowers / old-workbench-archived
  Workbench: A scalable python framework for security research and development teams.
  ☆91Updated 5 years ago
• anthonykasza / scratch_pad
  Bro Snippets
  ☆21Updated 10 years ago
• Phoul / yara_rules
  yara rules for crypto detection
  ☆30Updated 10 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• hosom / bro-phishing
  Detect Phishing with Bro IDS
  ☆18Updated 8 years ago
• g-clef / KafkaLogger
  Logging plugin to bro to send logs to a Kafka broker
  ☆20Updated 7 years ago
• zeek / zeek-netcontrol
  Connectors for the Zeek NetControl framework
  ☆19Updated 2 weeks ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated 9 months ago
• CrySyS / membrane
  Membrane: A Posteriori Detection of Malicious Code Loading by Memory Paging Analysis
  ☆42Updated 8 years ago
• haka-security / hakabana
  Hakabana monitoring tool using Haka, ElastcSearch and Kibana
  ☆20Updated 10 years ago
• ncsa / bro-simple-scan
  ☆15Updated 10 months ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆29Updated last year
• 0pc0deFR / YaraRules
  Multiple rules for yara-project for detect compiler/packer/protector
  ☆33Updated 5 years ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 4 years ago
• upa / ofpot
  OpenFlow Honeypot
  ☆23Updated 12 years ago
• MITRECND / bulk
  A content inspecting SMTP proxy
  ☆17Updated 10 years ago
• jandre / brosquery
  module for osquery to load Bro logs into tables
  ☆28Updated 9 years ago
• anthonykasza / snapshooter
  It's like a polaroid, but for domains
  ☆24Updated 10 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 8 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• initconf / scan-NG
  scan-detection policies for bro
  ☆15Updated last month
• wolfpack1 / intel_collection_tools
  ☆22Updated 7 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 10 years ago
• grigorescu / binpac_quickstart
  ☆20Updated 3 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated last year
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆30Updated 2 years ago