trisulnsm / trisul-scripts
Ready to run scripts for network analysis
☆87Updated 4 months ago
Alternatives and similar repositories for trisul-scripts:
Users that are interested in trisul-scripts are comparing it to the libraries listed below
- Bro scripts to be shared with the community☆109Updated 11 years ago
- How to Zeek Sysmon Logs!☆101Updated 2 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆47Updated 6 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- Passive DNS collection using Zeek☆181Updated last year
- Rule sets for Sagan☆102Updated 4 years ago
- Bro-IDS scripts☆50Updated 8 years ago
- Various Bro scripts☆96Updated 8 years ago
- DNSDB query scripts☆75Updated 4 years ago
- ☆76Updated 2 years ago
- Extract files from network traffic with Zeek.☆99Updated 4 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated last year
- A RESTful API frontend for Stenographer☆55Updated 2 years ago
- PassiveDNS in Go☆122Updated 5 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 8 years ago
- Docker container for MISP☆96Updated 6 years ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 8 years ago
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆30Updated 7 months ago
- Detect cryptocurrency mining traffic with Zeek.☆46Updated 3 years ago
- Script for generating Bro intel files from pdf or html reports☆76Updated 9 years ago
- Honeynet Project generic authenticated datafeed protocol☆214Updated last year
- ☆72Updated 3 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- scan-detection policies for bro☆15Updated this week
- YETI is a TAXII implementation☆46Updated 5 years ago