Alternatives and similar repositories for rpot2:

Users that are interested in rpot2 are comparing it to the libraries listed below

• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆84Updated 6 years ago
• jusafing / pnaf
  Passive Network Audit Framework
  ☆32Updated 6 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆37Updated 4 months ago
• joesecurity / Joe-Sandbox-Bro
  JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox
  ☆44Updated 5 years ago
• treussart / ProbeManager
  Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...
  ☆72Updated 5 years ago
• eSentire / malfeed
  Feed for verious malicious IPs such as malware and botnets
  ☆12Updated 8 years ago
• sethhall / bro-apt1
  This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.
  ☆47Updated 11 years ago
• TAXIIProject / yeti
  YETI is a TAXII implementation
  ☆46Updated 5 years ago
• Security-Onion-Solutions / securityonion-setup
  ☆36Updated 4 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 10 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• Xen0ph0n / MIDAS
  Metadata Inspection Database Alerting System
  ☆42Updated 11 years ago
• rocknsm / rock-scripts
  Bro scripts for the ROCK platform. http://rocknsm.io
  ☆33Updated last year
• opendns / og-miner
  OpenDNS Graph Miner
  ☆45Updated 7 years ago
• xme / mime2vt
  Unpack MIME attachments from a file and check them against virustotal.com
  ☆45Updated 8 years ago
• clong / vagrant-ids
  An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
  ☆23Updated 6 years ago
• MISP / misp-packer
  Build Automated Machine Images for MISP
  ☆28Updated last year
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆21Updated 6 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• paulpc / nyx
  Threat Intelligence distribution
  ☆30Updated 9 years ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 8 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Updated 4 years ago
• jpsenior / threataggregator
  Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…
  ☆79Updated 9 years ago
• ncsa / bro-simple-scan
  ☆15Updated 10 months ago
• jonschipp / bro-scripts
  A collection of Bro scripts I've written
  ☆40Updated 9 years ago
• SuperCowPowers / old-workbench-archived
  Workbench: A scalable python framework for security research and development teams.
  ☆91Updated 5 years ago
• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆77Updated last year