Alternatives and similar repositories for Network-Forensics

Users that are interested in Network-Forensics are comparing it to the libraries listed below

• fredtheranger / network-visualizaton-tool
  Network forensics tool to parse pcap and provide visualizations using D3.js
  ☆15Updated 11 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• bez0r / pDNS2
  Passive DNS V2
  ☆60Updated 11 years ago
• ncsa / bro-simple-scan
  ☆14Updated last year
• initconf / scan-NG
  scan-detection policies for bro
  ☆16Updated 4 months ago
• nccgroup / IP-reputation-snort-rule-generator
  A tool to generate Snort rules based on public IP reputation data
  ☆56Updated 11 years ago
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 5 years ago
• egaus / malicious_url_analysis
  ☆18Updated 6 years ago
• corelight / http-stalling-detector
  Detect HTTP stalling attacks like slowloris with Bro
  ☆19Updated 7 years ago
• John-Lin / malware
  This is a malware analysis project which expecte to generate snort rule via malicious network traffic
  ☆28Updated 2 years ago
• jakewarren / snort-rule-generator
  Quickly generate snort rules for IOCs
  ☆18Updated 9 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• thirdeyeintelligence / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆14Updated 8 years ago
• hosom / bro-scripts
  Bro stuff.
  ☆12Updated 9 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 11 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• ahm3dhany / IDS-Evasion
  Evading Snort Intrusion Detection System.
  ☆77Updated 3 years ago
• petabi / sniffles
  Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation
  ☆63Updated 4 years ago
• thirdeyeintelligence / IOCs-in-CSV-format
  The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research
  ☆12Updated 7 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆36Updated 8 years ago
• staaldraad / fastfluxanalysis
  Scripts to detect Fast-Flux and DGA using DNS query responses
  ☆43Updated 8 years ago
• set-element / auditdBroFramework
  The Auditd Framework logs and applies security policy to linux auditd data
  ☆15Updated 7 years ago
• LiamRandall / BroMalware-Exercise
  ☆85Updated 11 years ago
• 0xxon / zeek-tls-log-alternative
  Zeek scripts that provide an alternative log file logging TLS/SSL traffic
  ☆10Updated 4 years ago
• rkovar / dns_detection
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆38Updated 9 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago