trisulnsm / appsLinks
Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics.
☆17Updated last week
Alternatives and similar repositories for apps
Users that are interested in apps are comparing it to the libraries listed below
Sorting:
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆79Updated 2 years ago
- IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date☆95Updated 2 months ago
- JA3 TLS Fingerprint database☆80Updated 6 years ago
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23Updated 9 years ago
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆75Updated 2 months ago
- Ready to run scripts for network analysis☆88Updated 8 months ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆31Updated last year
- Suricata rule and intel index☆33Updated 3 weeks ago
- A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm☆59Updated 2 years ago
- cve-search is a tool to import CVE (Common Vulnerabilities and Exposures) and CPE (Common Platform Enumeration) into a MongoDB to facilit…☆24Updated 8 years ago
- DGA Domain Detection using Bigram Frequency Analysis☆54Updated 8 years ago
- Quickly generate suricata rules for IOCs☆28Updated 4 years ago
- Passive Real-time Asset Detection System☆248Updated last year
- System for network traffic analysis and anomaly detection.☆92Updated 4 months ago
- Snort DPDK DAQ module with multiqueue support - Primarily for Napatech NICs☆30Updated 6 years ago
- DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…☆80Updated last year
- multitenant ModSecurity compatible WAF engine from Edgio☆88Updated 11 months ago
- Network timing evaluation used to detect beacons, works with argus flow as the source☆20Updated 9 years ago
- Web service for scanning pcaps with snort☆110Updated 7 years ago
- Signature-free approach library to detect injection and commanding attacks☆96Updated 3 years ago
- CapAnalysis source code repository☆89Updated 6 years ago
- Templates for Kibana/Logstash to use with Suricata IDPS☆81Updated 9 years ago
- High performance Deep Packet Inspection (DPI) framework to identify L7 protocols and extract and process data and metadata from network t…☆127Updated 4 years ago
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆94Updated last year
- Scripts to detect Fast-Flux and DGA using DNS query responses☆44Updated 8 years ago
- Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)☆105Updated last week
- YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…☆26Updated 3 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 7 years ago
- GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.☆75Updated 2 years ago
- Operating system remote fingerprinting attack and detection tools☆56Updated 12 years ago