Python rewrite of passive OS fingerprinting tool
☆210Dec 24, 2025Updated 2 months ago
Alternatives and similar repositories for satori
Users that are interested in satori are comparing it to the libraries listed below
Sorting:
- Passive TCP/IP Fingerprinting Tool. Run this on your server and find out what Operating Systems your clients are *really* using.☆409Nov 15, 2025Updated 3 months ago
- DHCP fingerprints database and related tools☆19Nov 14, 2014Updated 11 years ago
- Zeek network security monitor plugin that enables parsing of the BACnet standard building controls protocol☆30Apr 23, 2025Updated 10 months ago
- ☆19Feb 26, 2026Updated last week
- ☆17Oct 26, 2021Updated 4 years ago
- DigitalShadows Alert Feeder for TheHive, an Open Source and Free Security Incident Response Platform☆47Jul 8, 2019Updated 6 years ago
- HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…☆545May 1, 2025Updated 10 months ago
- ☆24Sep 28, 2022Updated 3 years ago
- DuckDB extension for readin PCAP files☆19Aug 31, 2024Updated last year
- Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics.☆17Jan 27, 2026Updated last month
- Yara Rule Analyzer and Statistics☆394Feb 19, 2023Updated 3 years ago
- ☆14Jan 22, 2018Updated 8 years ago
- Consolidation of various resources related to Microsoft Sysmon & sample data/log☆122Sep 20, 2021Updated 4 years ago
- Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)☆92Apr 25, 2025Updated 10 months ago
- Mercury: network metadata capture and analysis☆499Feb 18, 2026Updated 2 weeks ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆80Sep 13, 2023Updated 2 years ago
- Maintained by the ANY.RUN team, this repository provides YARA rules to help detect and classify various malware families and other malici…☆26Nov 1, 2025Updated 4 months ago
- Some of the presentations given by me☆19Aug 8, 2025Updated 6 months ago
- yarGen is a generator for YARA rules☆1,779Jan 10, 2026Updated last month
- Wireshark dissector for GE-FANUC Service Request Transfer Protocol☆11Jan 7, 2023Updated 3 years ago
- Identify QuasarRAT/AsyncRAT/DcRAT/VenomRAT servers through scanning☆13Apr 20, 2024Updated last year
- A Python implementation of the Community ID flow hashing standard☆23Nov 29, 2023Updated 2 years ago
- FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …☆679Oct 28, 2023Updated 2 years ago
- ☆37Jul 10, 2015Updated 10 years ago
- Zeek network security monitor plugin that enables parsing of the Tabular Data Stream (TDS) protocol☆25May 30, 2024Updated last year
- Simple Bash IOC Scanner☆772Feb 12, 2022Updated 4 years ago
- JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.☆3,072May 1, 2025Updated 10 months ago
- ☆11Apr 18, 2024Updated last year
- REPL for C preprocessor of C++17☆10Jul 20, 2025Updated 7 months ago
- All my POC related to malware development☆15Feb 19, 2026Updated 2 weeks ago
- YARA detection rule for CVE-2024-4367 arbitrary javascript execution in PDF.js☆11May 27, 2024Updated last year
- ☆10Dec 24, 2022Updated 3 years ago
- ☆10Nov 26, 2024Updated last year
- JA4+ is a suite of network fingerprinting standards☆1,785Feb 17, 2026Updated 2 weeks ago
- Zeek network security monitor plugin that enables parsing of the Ethernet/IP and Common Industrial Protocol standards☆46May 30, 2024Updated last year
- You're busted!☆27Dec 16, 2019Updated 6 years ago
- List of awesome starred repositories☆13Updated this week
- os fingerprint probe through smb☆10Jun 24, 2021Updated 4 years ago
- ☆12Jan 9, 2023Updated 3 years ago