vishal1991 / Network-Forensics

Related projects ⓘ

Alternatives and complementary repositories for Network-Forensics

• bez0r / pDNS2
  Passive DNS V2
  ☆62Updated 10 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• fredtheranger / network-visualizaton-tool
  Network forensics tool to parse pcap and provide visualizations using D3.js
  ☆15Updated 11 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated last year
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 4 years ago
• hosom / bro-scripts
  Bro stuff.
  ☆12Updated 8 years ago
• micrictor / smbfp
  Zeek package to generate a SMB client fingerprint
  ☆26Updated 4 years ago
• EmergingThreats / IDSDeathBlossom
  IDS Utility Belt For Automating/Testing Various Things
  ☆30Updated 4 years ago
• corelight / top-dns
  Top DNS Measurement for Bro
  ☆11Updated 4 years ago
• egaus / malicious_url_analysis
  ☆18Updated 6 years ago
• John-Lin / malware
  This is a malware analysis project which expecte to generate snort rule via malicious network traffic
  ☆27Updated last year
• rj-chap / NFWorkshop
  Network Forensics Workshop Files
  ☆17Updated 9 years ago
• cmatthewbrooks / pyiocutils
  A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).
  ☆17Updated 5 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• abzcoding / aptdetector
  Advanced Persistent Threat Detection Using Network Analysis
  ☆22Updated 5 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆29Updated 10 months ago
• grigorescu / bro-scripts
  Contributed Bro Scripts
  ☆30Updated 10 years ago
• fl0x2208 / ThreatHunting
  An informational repo about hunting for adversaries in your IT environment.
  ☆14Updated 7 years ago
• fireeye / brocapi
  Bro PCAP Processing and Tagging API
  ☆28Updated 7 years ago
• midnightslacker / threat_intel
  Gather and compile open source threat intelligence feeds.
  ☆38Updated 2 years ago
• jakewarren / snort-rule-generator
  Quickly generate snort rules for IOCs
  ☆18Updated 9 years ago
• dougiep16 / actortrackr
  Home to the ActorTrackr source code
  ☆24Updated 7 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆62Updated 10 years ago
• paulpc / nyx
  Threat Intelligence distribution
  ☆30Updated 8 years ago
• fl0x2208 / Memoirs-of-a-Threat-Hunter
  My personal experience in Threat Hunting and knowledge gained so far.
  ☆19Updated 7 years ago
• initconf / scan-NG
  scan-detection policies for bro
  ☆15Updated last year
• jaegeral / FireMISP
  FireEye Alert json files to MISP Malware information sharing plattform (Alpha)
  ☆32Updated 7 years ago
• StamusNetworks / surimisp
  Check IOC provided by a MISP instance on Suricata events
  ☆17Updated 5 years ago
• neu5ron / dnssinkholelist
  dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…
  ☆18Updated 8 years ago