vishal1991 / Network-ForensicsLinks
• Packet capture (PCAP) file analysis to analyze traffic sent by malicious IP address.
☆12Updated 10 years ago
Alternatives and similar repositories for Network-Forensics
Users that are interested in Network-Forensics are comparing it to the libraries listed below
Sorting:
- Network forensics tool to parse pcap and provide visualizations using D3.js☆15Updated 11 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- Network timing evaluation used to detect beacons, works with argus flow as the source☆20Updated 9 years ago
- Top DNS Measurement for Bro☆11Updated 4 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Passive DNS V2☆60Updated 11 years ago
- ☆14Updated last year
- scan-detection policies for bro☆16Updated 4 months ago
- A tool to generate Snort rules based on public IP reputation data☆56Updated 11 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- ☆18Updated 6 years ago
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 7 years ago
- This is a malware analysis project which expecte to generate snort rule via malicious network traffic☆28Updated 2 years ago
- Quickly generate snort rules for IOCs☆18Updated 9 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 8 years ago
- Bro stuff.☆12Updated 9 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- Home to the ActorTrackr source code☆24Updated 7 years ago
- Evading Snort Intrusion Detection System.☆77Updated 3 years ago
- Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation☆63Updated 4 years ago
- The repository contains IOCs in CSV format for APT, Cyber Crimes, Malware and Trojan and whatever I found as part of hunting and research☆12Updated 7 years ago
- malware-traffic-analysis.net PCAPs repository.☆36Updated 8 years ago
- Scripts to detect Fast-Flux and DGA using DNS query responses☆43Updated 8 years ago
- The Auditd Framework logs and applies security policy to linux auditd data☆15Updated 7 years ago
- ☆85Updated 11 years ago
- Zeek scripts that provide an alternative log file logging TLS/SSL traffic☆10Updated 4 years ago
- Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration☆38Updated 9 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago