Alternatives and similar repositories for apps

Users that are interested in apps are comparing it to the libraries listed below

• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Updated 2 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆96Updated 3 weeks ago
• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆81Updated 6 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆91Updated 10 months ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆32Updated last year
• xplico / CapAnalysis
  CapAnalysis source code repository
  ☆89Updated 7 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆77Updated 3 weeks ago
• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆92Updated 6 months ago
• caesar0301 / pcapdpi
  Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…
  ☆23Updated 9 years ago
• sdnewhop / sdwan-harvester
  Automatically enumerate and fingerprint SD-WAN nodes on the internet
  ☆49Updated 4 years ago
• sahilmgandhi / IotShark
  IotShark - Monitoring and Analyzing IoT Traffic
  ☆92Updated 3 years ago
• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆55Updated 8 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆249Updated last year
• fullylegit / ja3
  A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm
  ☆60Updated 2 years ago
• D4-project / d4-core
  D4 core software (server and sample sensor client)
  ☆42Updated 2 years ago
• John-Lin / docker-snort
  Snort in Docker for Network Functions Virtualization (NFV)
  ☆109Updated 6 years ago
• PidgeyL / cve-search
  cve-search is a tool to import CVE (Common Vulnerabilities and Exposures) and CPE (Common Platform Enumeration) into a MongoDB to facilit…
  ☆25Updated 8 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆110Updated 7 years ago
• alphasoc / nfr
  A lightweight tool to score network traffic and flag anomalies
  ☆123Updated last year
• logstash-plugins / logstash-codec-nmap
  NMap XML decoding for logstash
  ☆28Updated 3 years ago
• zmap / zannotate
  Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)
  ☆109Updated this week
• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆80Updated 2 years ago
• NLADC / dissector
  Software responsible for extracting DDoS Fingerprints from traffic captures.
  ☆70Updated 6 months ago
• stanford-esrg / gps
  GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.
  ☆77Updated 2 years ago
• ossec / ossec-rules
  A repository for OSSEC rules and decoders
  ☆55Updated 2 years ago
• felixe / idsEventGenerator
  aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…
  ☆22Updated 7 years ago
• DanielSchwartz1 / SplunkForPCAP
  The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap)
  ☆46Updated last month
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• jsiwek / zeek-cryptomining
  Detect cryptocurrency mining traffic with Zeek.
  ☆46Updated 4 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆88Updated 6 years ago