Alternatives and similar repositories for Network-Forensics

Users that are interested in Network-Forensics are comparing it to the libraries listed below

• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆63Updated 11 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆113Updated 6 years ago
• grigorescu / bro-scripts
  Contributed Bro Scripts
  ☆30Updated 11 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆72Updated 5 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆107Updated 7 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• jasklabs / blackhat2017
  Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases
  ☆30Updated 8 years ago
• 401trg / detections
  This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…
  ☆122Updated 4 years ago
• gcrahay / otx_misp
  Imports Alienvault OTX pulses to a MISP instance
  ☆53Updated 4 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆42Updated 2 years ago
• hosom / bro-scripts
  Bro stuff.
  ☆12Updated 9 years ago
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆154Updated 5 months ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆103Updated 5 years ago
• STIXProject / stix-viz
  STIX Visualization Tool
  ☆109Updated 7 years ago
• neu5ron / dnssinkholelist
  dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…
  ☆18Updated 9 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• ahm3dhany / IDS-Evasion
  Evading Snort Intrusion Detection System.
  ☆78Updated 4 years ago
• S03D4-164 / Hiryu
  IOC Management and Visualization Tool
  ☆47Updated 2 years ago
• xme / cuckoomx
  CuckooMX is a project to automate analysis of files transmitted over SMTP (using the Cuckoo sandbox)
  ☆41Updated 13 years ago
• inguardians / toms_honeypot
  Tom's Honey Pot as seen in Applied Network Security Monitoring.
  ☆26Updated 10 years ago
• abusesa / abusehelper
  A framework for receiving and redistributing abuse feeds
  ☆124Updated 6 years ago
• thirdeyeintelligence / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆14Updated 8 years ago
• corelight / http-stalling-detector
  Detect HTTP stalling attacks like slowloris with Bro
  ☆19Updated 7 years ago
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆44Updated 4 years ago
• sooshie / bro-scripts
  Various Bro scripts
  ☆96Updated 9 years ago
• opensourcesec / malstrom
  Cyber Intel Management
  ☆49Updated 7 years ago
• midnightslacker / threat_intel
  Gather and compile open source threat intelligence feeds.
  ☆40Updated 3 years ago
• hempnall / broyara
  integrating bro into yara
  ☆33Updated 10 years ago
• endgameinc / SANS_THIR16
  SANS Hunting on the Cheap
  ☆36Updated 9 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 6 years ago