vishal1991 / Network-Forensics
• Packet capture (PCAP) file analysis to analyze traffic sent by malicious IP address.
☆12Updated 9 years ago
Related projects ⓘ
Alternatives and complementary repositories for Network-Forensics
- Passive DNS V2☆62Updated 10 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated last year
- Network forensics tool to parse pcap and provide visualizations using D3.js☆15Updated 11 years ago
- Sniffles: Packet Capture Generator for IDS and Regular Expression Evaluation☆62Updated 3 years ago
- ☆18Updated 6 years ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆17Updated 5 years ago
- malware-traffic-analysis.net PCAPs repository.☆34Updated 8 years ago
- This is a malware analysis project which expecte to generate snort rule via malicious network traffic☆27Updated last year
- Network Forensics Bro scripts & pcap samples☆62Updated 10 years ago
- An informational repo about hunting for adversaries in your IT environment.☆14Updated 7 years ago
- Top DNS Measurement for Bro☆11Updated 4 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19Updated 7 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 6 years ago
- A tool to generate Snort rules based on public IP reputation data☆56Updated 11 years ago
- IDS Utility Belt For Automating/Testing Various Things☆30Updated 4 years ago
- Network Forensics Workshop Files☆17Updated 9 years ago
- Detect HTTP stalling attacks like slowloris with Bro☆19Updated 6 years ago
- Home to the ActorTrackr source code☆24Updated 7 years ago
- A tool to convert MISP XML files (events and attributes) into graphs☆20Updated 7 years ago
- Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner☆42Updated 3 years ago
- scan-detection policies for bro☆15Updated last year
- Python scripts to parse scans.io ssl data and ingest into elasticsearch for searching☆33Updated 8 years ago
- Sorta reverse implementation of ShoVAT - Also includes NMAP banner regex results☆17Updated 5 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆46Updated 6 years ago
- dnssinkholelist is a python package focused on combining open source lists of malicious domains, dynamic dns domains, and advertisement d…☆18Updated 8 years ago
- Proactive Computer Network Defense Strategy - OSINT Real Time Threat Stream - Social/DarkNet - Data Mining☆31Updated 12 years ago
- Threat Intel and Incident Reponse☆10Updated 6 years ago
- JoeSandbox-Bro is a simple bro script which extracts files from your internet connection and analyzes them automatically on Joe Sandbox☆44Updated 5 years ago
- The FastIR Server is a Web server to schedule FastIR Collector forensics collect thanks to the FastIR Agent☆12Updated 7 years ago
- Snort_rules detection bad actors.☆28Updated 2 months ago