Alternatives and similar repositories for satori

Users that are interested in satori are comparing it to the libraries listed below

• trisulnsm / ja3prints
  JA3 TLS Fingerprint database
  ☆81Updated 6 years ago
• fullylegit / ja3
  A wireshark/tshark plugin for the JA3 TLS Client Fingerprinting Algorithm
  ☆60Updated 2 years ago
• segofensiva / OSfooler-ng
  OSfooler-ng prevents remote active/passive OS fingerprinting by tools like nmap or p0f
  ☆215Updated 2 years ago
• stanford-esrg / lzr
  LZR quickly detects and fingerprints unexpected services running on unexpected ports.
  ☆189Updated 2 weeks ago
• salesforce / GQUIC_Protocol_Analyzer
  GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor
  ☆80Updated 2 years ago
• StopDDoS / packet-captures
  packet captures of real-world ddos attacks
  ☆165Updated 3 months ago
• certego / PcapMonkey
  PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.
  ☆162Updated 9 months ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆181Updated last month
• mushorg / glutton
  Generic Low Interaction Honeypot
  ☆294Updated 2 weeks ago
• thongsia / Public-Pcaps
  ☆68Updated 7 years ago
• cisco / mercury
  Mercury: network metadata capture and analysis
  ☆493Updated this week
• 0x4D31 / fatt
  FATT /fingerprintAllTheThings - a pyshark based script for extracting network metadata and fingerprints from pcap files and live network …
  ☆679Updated 2 years ago
• brimdata / brimcap
  Convert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
  ☆92Updated 8 months ago
• CERT-Polska / hfinger
  Hfinger - fingerprinting HTTP requests
  ☆141Updated 2 years ago
• CERT-Polska / n6
  Automated handling of data feeds for security teams
  ☆146Updated 2 weeks ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆90Updated last month
• idaholab / Malcolm
  Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…
  ☆449Updated this week
• spyre-project / spyre
  simple YARA-based IOC scanner
  ☆175Updated last week
• chrisjd20 / Snorpy
  Snorpy is a python script the gives a Gui interface to help those new to snort create rules.
  ☆64Updated last year
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆91Updated 10 months ago
• p0f / p0f
  p0f unofficial git repo
  ☆509Updated 6 years ago
• zeek / packages
  The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.
  ☆143Updated this week
• LeeBrotherston / tls-fingerprinting
  TLS Fingerprinting
  ☆397Updated 5 years ago
• zmap / zannotate
  Utility for annotating Internet datasets with contextual metadata (e.g., origin AS, MaxMind GeoIP2, reverse DNS, and WHOIS)
  ☆108Updated last week
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 3 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆118Updated this week
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆95Updated 4 years ago
• elcabezzonn / Pcaps
  ☆54Updated 2 years ago
• D4-project / IPASN-History
  IP ASN History to find ASN announcing an IP and the closest prefix announcing it at a specific date
  ☆95Updated last week
• D4-project / BGP-Ranking
  BGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
  ☆77Updated last week