Alternatives and similar repositories for Network-Forensics

Users that are interested in Network-Forensics are comparing it to the libraries listed below

• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆63Updated 11 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆16Updated 7 years ago
• grigorescu / bro-scripts
  Contributed Bro Scripts
  ☆30Updated 11 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆114Updated 7 years ago
• endgameinc / SANS_THIR16
  SANS Hunting on the Cheap
  ☆36Updated 9 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆109Updated 7 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆102Updated 5 years ago
• TravisFSmith / MyBroElk
  Scripts for Bro IDS and ELK Stack
  ☆57Updated 10 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 3 years ago
• inguardians / toms_honeypot
  Tom's Honey Pot as seen in Applied Network Security Monitoring.
  ☆27Updated 10 years ago
• thirdeyeintelligence / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆14Updated 8 years ago
• idiom / pftriage
  Python tool and library to help analyze files during malware triage and analysis.
  ☆78Updated 5 years ago
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆157Updated 8 months ago
• RamadhanAmizudin / python-icap-yara
  An ICAP Server with yara scanner for URL and content.
  ☆58Updated last year
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 10 years ago
• hosom / bro-scripts
  Bro stuff.
  ☆12Updated 9 years ago
• MISP / misp-graph
  A tool to convert MISP XML files (events and attributes) into graphs
  ☆20Updated 8 years ago
• xme / cuckoomx
  CuckooMX is a project to automate analysis of files transmitted over SMTP (using the Cuckoo sandbox)
  ☆41Updated 13 years ago
• 3c7 / aptmap
  A map displaying threat actors from the misp-galaxy
  ☆33Updated 3 years ago
• opensourcesec / malstrom
  Cyber Intel Management
  ☆51Updated 8 years ago
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆44Updated 4 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆38Updated 9 years ago
• midnightslacker / threat_intel
  Gather and compile open source threat intelligence feeds.
  ☆40Updated 3 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆133Updated 10 years ago
• STIXProject / stix-viz
  STIX Visualization Tool
  ☆110Updated 7 years ago
• sooshie / bro-scripts
  Various Bro scripts
  ☆96Updated 9 years ago
• neu5ron / dnssinkholelist
  dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…
  ☆18Updated 9 years ago
• egaus / malicious_url_analysis
  ☆18Updated 7 years ago