Alternatives and similar repositories for satori

Users that are interested in satori are comparing it to the libraries listed below

• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆79Updated 5 years ago
• fullylegit / ja3
  A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm
  ☆59Updated last year
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆173Updated last month
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆670Updated last year
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆164Updated last month
• secureworks / flowsynth
  a network packet capture compiler
  ☆199Updated 3 years ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆77Updated last year
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆457Updated this week
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆88Updated 2 months ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆153Updated 2 months ago
• xplico / CapAnalysis
  CapAnalysis source code repository
  ☆87Updated 6 years ago
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆388Updated 4 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆108Updated this week
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆478Updated 2 weeks ago
• CriticalPathSecurity / Zeek-Intelligence-Feeds
  Zeek-Formatted Threat Intelligence Feeds
  ☆367Updated this week
• p0f / p0f
  p0f unofficial git repo
  ☆494Updated 5 years ago
• mushorg / glutton
  Generic Low Interaction Honeypot
  ☆278Updated last week
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆271Updated last month
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆72Updated 10 months ago
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆408Updated this week
• CERT-Polska / hfinger
  Hfinger - fingerprinting HTTP requests
  ☆137Updated 2 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• mosajjal / dnsmonster
  Passive DNS Capture and Monitoring Toolkit
  ☆329Updated 3 weeks ago
• salesforce / hassh
  HASSH is a network fingerprinting standard which can be used to identify specific Client and Server SSH implementations. The fingerprints…
  ☆541Updated last month
• jasonish / evebox
  Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
  ☆458Updated last week
• FoxIO-LLC / ja4-nginx-module
  Nginx module that calcuates fingerprints from the JA4+ suite
  ☆66Updated last week
• MISP / misp-warninglists
  Warning lists to inform users of MISP about potential false-positives or other information in indicators
  ☆575Updated 3 weeks ago
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆169Updated 3 months ago
• segofensiva / OSfooler-ng
  OSfooler-ng prevents remote active/passive OS fingerprinting by tools like nmap or p0f
  ☆206Updated 2 years ago
• alexandrosmagos / dyn-dns-list
  This repository contains a comprehensive list of over 30k dynamic DNS domains as of 2024. The list is provided for informational purposes…
  ☆96Updated 5 months ago