Alternatives and similar repositories for rpot2

Users that are interested in rpot2 are comparing it to the libraries listed below

• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago
• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆77Updated last year
• jusafing / pnaf
  Passive Network Audit Framework
  ☆32Updated 7 years ago
• eSentire / malfeed
  Feed for verious malicious IPs such as malware and botnets
  ☆12Updated 9 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• makemytrip / dataShark
  dataShark is a Security & Network Event Analytics Framework built on Apache Spark
  ☆45Updated 8 years ago
• SuperCowPowers / old-workbench-archived
  Workbench: A scalable python framework for security research and development teams.
  ☆92Updated 5 years ago
• anl-cyberscience / LQMToolset
  Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.
  ☆20Updated 6 years ago
• videlanicolas / assimilator
  Automatic firewall rule orchestator.
  ☆83Updated 7 years ago
• Security-Onion-Solutions / securityonion-bro-scripts
  ☆24Updated 5 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• opendns / pyinvestigate
  Python module to interface with the OpenDNS Investigate API
  ☆63Updated 3 years ago
• CIRCL / compliance
  Legal, procedural and policies document templates for operating an IRT
  ☆64Updated last year
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆124Updated 5 years ago
• cve-search / Plugins
  Plugins written for CVE-Search
  ☆26Updated 4 years ago
• CIRCL / traceroute-circl
  Traceroute improved wrapper for CSIRT and CERT operators
  ☆38Updated 9 months ago
• StamusNetworks / ansible-misp
  Ansible playbook to install Malware Information Sharing Platform (MISP)
  ☆17Updated 10 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆106Updated 6 years ago
• treussart / ProbeManager
  Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...
  ☆72Updated 6 years ago
• JustinAzoff / flow-indexer
  Flow-Indexer indexes flows found in chunked log files from bro,nfdump,syslog, or pcap files
  ☆44Updated last year
• adulau / MalwareClassifier
  Malware Classifier From Network Captures
  ☆82Updated 8 years ago
• nkleck / Scumblr_Security_Tool
  Scumblr instructions with custom search providers for monitoring malicous content
  ☆17Updated 7 years ago
• opendns / og-miner
  OpenDNS Graph Miner
  ☆45Updated 8 years ago
• clong / vagrant-ids
  An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
  ☆23Updated 7 years ago
• sethhall / bro-apt1
  This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.
  ☆48Updated 11 years ago
• Security-Onion-Solutions / securityonion-setup
  ☆36Updated 4 years ago
• CIRCL / pystemon
  Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon
  ☆44Updated 4 years ago
• fygrave / honeyntp
  NTP logger/honeypot
  ☆53Updated 11 years ago