trisulnsm / apps
Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics.
☆16Updated 2 weeks ago
Alternatives and similar repositories for apps:
Users that are interested in apps are comparing it to the libraries listed below
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆76Updated last year
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆32Updated 6 months ago
- We publish indicators of compromise related to our stories here. See https://blog.team-cymru.com/ for more information.☆9Updated 3 years ago
- Some of the presentations given by me☆18Updated 4 months ago
- Application and service identification rules for Suricata☆18Updated 2 years ago
- A mysql honeypot, still very very early stage☆21Updated 12 years ago
- Network timing evaluation used to detect beacons, works with argus flow as the source☆20Updated 8 years ago
- Suricata rule and intel index☆30Updated last week
- Python framework for manipulating bulk WHOIS data from RIRs☆20Updated 2 years ago
- D4 core software (server and sample sensor client)☆42Updated last year
- Snort/Suricata DAQ module with DPDK patch☆11Updated 11 months ago
- A tool to generate log messages related to interfaces, neighbor cache (ARP,NDP), IP address, routing, FIB rules, traffic control.☆32Updated 5 months ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated 10 months ago
- A Spicy protocol analyzer for WireGuard☆29Updated 4 years ago
- Automatically enumerate and fingerprint SD-WAN nodes on the internet☆50Updated 3 years ago
- automatic enumeration and maintenance of Suricata monitoring interfaces☆11Updated 5 years ago
- Zeek scripts that provide an alternative log file logging TLS/SSL traffic☆10Updated 3 years ago
- How to Zeek Sysmon Logs!☆101Updated 3 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek-packages/zeek-agent-v2☆14Updated 4 years ago
- IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date☆90Updated 6 months ago
- This is an open source Snort rules repository☆30Updated 2 years ago
- A mapping project between tags (annotations, labels) and domain names☆11Updated 11 months ago
- Script for pcap modification, reconstruction and anonymization☆18Updated 4 months ago
- A privacy-aware exchange module to securely and privately share your indicators☆13Updated 7 years ago
- Web service for scanning pcaps with snort☆108Updated 6 years ago
- NMap XML decoding for logstash☆28Updated 2 years ago
- Scripts to detect Fast-Flux and DGA using DNS query responses☆42Updated 7 years ago
- Mirror network traffic from one interface to another on Windows☆25Updated 5 years ago
- Plugin providing AF_XDP support for Bro.☆14Updated 3 years ago
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated 2 months ago