vishal1991 / Network-Forensics
• Packet capture (PCAP) file analysis to analyze traffic sent by malicious IP address.
☆12Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for Network-Forensics
- Passive DNS V2☆62Updated 10 years ago
- Network timing evaluation used to detect beacons, works with argus flow as the source☆19Updated 8 years ago
- Network forensics tool to parse pcap and provide visualizations using D3.js☆15Updated 11 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated last year
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- Bro stuff.☆12Updated 8 years ago
- Zeek package to generate a SMB client fingerprint☆26Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Top DNS Measurement for Bro☆11Updated 4 years ago
- ☆18Updated 6 years ago
- This is a malware analysis project which expecte to generate snort rule via malicious network traffic☆27Updated last year
- Network Forensics Workshop Files☆17Updated 9 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 5 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- Advanced Persistent Threat Detection Using Network Analysis☆22Updated 5 years ago
- Honeypot log processor to create OTX Pulse entries☆29Updated 10 months ago
- Contributed Bro Scripts☆30Updated 10 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 7 years ago
- Bro PCAP Processing and Tagging API☆28Updated 7 years ago
- Gather and compile open source threat intelligence feeds.☆38Updated 2 years ago
- Quickly generate snort rules for IOCs☆18Updated 9 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 10 years ago
- Threat Intelligence distribution☆30Updated 8 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 7 years ago
- scan-detection policies for bro☆15Updated last year
- FireEye Alert json files to MISP Malware information sharing plattform (Alpha)☆32Updated 7 years ago
- Check IOC provided by a MISP instance on Suricata events☆17Updated 5 years ago
- dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…☆18Updated 8 years ago