trisulnsm / bitmaul
A Lua helper library for creating network protocol dissectors
☆13Updated 3 years ago
Related projects: ⓘ
- flexible, structured event replication format for DNS servers (Protocol Buffers schema)☆24Updated 6 months ago
- Kafka connector to sync Zed lakes to and from Kafka topics☆18Updated 3 months ago
- Engine for capturing, parsing and replaying DNS☆56Updated 3 weeks ago
- D4 core software (server and sample sensor client)☆43Updated 8 months ago
- A Spicy protocol analyzer for WireGuard☆27Updated 4 years ago
- Architecture - design and implementation of the D4 project architecture☆16Updated 3 years ago
- Accurate, modular, scalable PCAP manipulation tool written in Go.☆85Updated 4 months ago
- BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)☆68Updated 2 months ago
- Extract TLS certificates from pcap files or network interfaces, fingerprint TLS client/server interactions with ja3/ja3s☆38Updated 4 years ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆75Updated last year
- Measuring Internet AS dependency☆12Updated 2 years ago
- fast, extensible, versatile event router for Suricata's EVE-JSON format☆50Updated 2 months ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆66Updated 4 months ago
- Go implementation of the Community ID flow hashing standard☆19Updated 3 weeks ago
- E4's C2 server☆19Updated 3 years ago
- suricata eve.json parser in Go☆14Updated 5 years ago
- A Python implementation of the Community ID flow hashing standard☆23Updated 9 months ago
- DNS packet generator☆40Updated last month
- ☆12Updated 3 years ago
- A native and unofficial implementation of p0f3 in Python with extra analysis features: It's p0f3+!☆25Updated 2 years ago
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆30Updated 3 months ago
- JA3 TLS Fingerprint database☆72Updated 4 years ago
- Import and display Masscan data☆32Updated 9 months ago
- Detect Phishing fetching Certificate Transparency Logs☆20Updated 3 years ago
- Script to check ModSecurity rules agains some WAF☆11Updated 5 years ago
- Application and service identification rules for Suricata☆17Updated last year
- ☆52Updated this week
- Network Entity Reputation Database☆32Updated 2 weeks ago
- INACTIVE - http://mzl.la/ghe-archive - Zeek Extreme Performance Tuning☆25Updated 4 years ago
- Tiny nDPI based deep packet inspection daemons / toolkit.☆64Updated last week