Alternatives and similar repositories for satori

Users that are interested in satori are comparing it to the libraries listed below

• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆80Updated 5 years ago
• fullylegit / ja3
  A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm
  ☆59Updated 2 years ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆183Updated 6 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆175Updated 2 weeks ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆79Updated 2 years ago
• segofensiva / OSfooler-ng
  OSfooler-ng prevents remote active/passive OS fingerprinting by tools like nmap or p0f
  ☆213Updated 2 years ago
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆76Updated last month
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆158Updated 7 months ago
• CERT-Polska / hfinger
  Hfinger - fingerprinting HTTP requests
  ☆139Updated 2 years ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆112Updated last year
• StopDDoS / packet-captures
  packet captures of real-world ddos attacks
  ☆167Updated 3 weeks ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆115Updated last week
• xplico / CapAnalysis
  CapAnalysis source code repository
  ☆88Updated 6 years ago
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆170Updated last month
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆171Updated 2 years ago
• stamparm / blackbook
  Blackbook of malware domains
  ☆261Updated 4 months ago
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆63Updated last year
• MISP / misp-warninglists
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆594Updated last week
• p0f / p0f
  p0f unofficial git repo
  ☆503Updated 6 years ago
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆143Updated last month
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆88Updated 7 months ago
• CaliDog / Axeman
  Axeman is a utility to retrieve certificates from Certificate Transparency Lists (CTLs)
  ☆225Updated last year
• ivre / masscanned
  Let's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-host…
  ☆129Updated last week
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆95Updated last month
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆91Updated 6 months ago
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆674Updated 2 years ago
• StamusNetworks / suricata-language-server
  Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…
  ☆81Updated 3 weeks ago
• ninoseki / miteru
  A phishing kit collector for scavengers
  ☆219Updated 2 weeks ago
• sandialabs / gait
  Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies
  ☆37Updated 2 months ago