Alternatives and similar repositories for satori:

Users that are interested in satori are comparing it to the libraries listed below

• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆78Updated 5 years ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆171Updated 2 months ago
• segofensiva / OSfooler-ng
  OSfooler-ng prevents remote active/passive OS fingerprinting by tools like nmap or p0f
  ☆205Updated 2 years ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆76Updated last year
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆153Updated 3 weeks ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆159Updated this week
• fullylegit / ja3
  A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm
  ☆58Updated last year
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• TW-NCERT / ctifeeds
  Cyber Threat Intelligence Feeds
  ☆95Updated 8 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆237Updated 10 months ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆359Updated this week
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆474Updated 3 months ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆106Updated this week
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆401Updated 2 weeks ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆198Updated 2 years ago
• Cisco-Talos / file2pcap
  ☆167Updated 3 years ago
• AlienVault-OTX / OTX-Suricata
  The OTX Suricata Rule Generator can be used to create the rules and configuration for Suricata to alert on indicators from your OTX accou…
  ☆109Updated 11 months ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆455Updated last month
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆453Updated last week
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆93Updated 3 years ago
• CERT-Polska / hfinger
  Hfinger - fingerprinting HTTP requests
  ☆137Updated last year
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆72Updated 9 months ago
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆665Updated last year
• rosehgal / HoneySMB
  Simple High Interaction Honeypot Solution for SMB protocol
  ☆48Updated 4 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆75Updated 7 years ago
• 360netlab / DGA
  Suspicious DGA from PDNS and Sandbox.
  ☆183Updated 2 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated last year
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆77Updated 8 months ago
• p0f / p0f
  p0f unofficial git repo
  ☆489Updated 5 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆88Updated last month