Alternatives and similar repositories for CapAnalysis:

Users that are interested in CapAnalysis are comparing it to the libraries listed below

• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 7 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• xplico / xplico
  Open Source Network Forensic Analysis Tool (NFAT)
  ☆185Updated 4 years ago
• Cisco-Talos / Daemonlogger
  The Official Github Repository of Daemonlogger
  ☆20Updated 3 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆108Updated 6 years ago
• treussart / ProbeManager
  Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...
  ☆72Updated 5 years ago
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆93Updated 3 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆87Updated this week
• Cisco-Talos / file2pcap
  ☆169Updated 3 years ago
• EmergingThreats / et-luajit-scripts
  ☆76Updated 2 years ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆84Updated 5 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆30Updated 7 months ago
• bez0r / pDNS2
  Passive DNS V2
  ☆62Updated 10 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆47Updated 6 years ago
• felixe / idsEventGenerator
  aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…
  ☆22Updated 6 years ago
• fox-it / bro-scripts
  Bro-IDS scripts
  ☆50Updated 8 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆35Updated 8 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆109Updated 11 years ago
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆43Updated 3 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆100Updated 4 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆102Updated 4 years ago
• mushorg / oschameleon
  OS Fingerprint Obfuscation for modern Linux Kernels
  ☆75Updated 8 months ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆233Updated 8 months ago
• beave / meer
  Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
  ☆23Updated 3 years ago
• Masood-M / yalih
  YALIH (Yet Another Low Interaction Honeyclient) is a low Interaction Client honeypot designed to detect malicious websites through signat…
  ☆68Updated 5 years ago
• ciscocsirt / netsarlacc
  ☆38Updated 6 years ago
• automayt / FlowPlotter
  Generates visualizations from the output of flow tools such as SiLK.
  ☆35Updated 8 years ago
• nccgroup / IP-reputation-snort-rule-generator
  A tool to generate Snort rules based on public IP reputation data
  ☆56Updated 11 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• tylabs / dovehawk
  Dovehawk is a Zeek module that automatically imports MISP indicators and reports Sightings
  ☆122Updated 3 years ago