xplico / CapAnalysis
CapAnalysis source code repository
☆83Updated 5 years ago
Related projects: ⓘ
- ☆167Updated 3 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- The Official Github Repository of Daemonlogger☆19Updated 3 years ago
- Open Source Network Forensic Analysis Tool (NFAT)☆179Updated 4 years ago
- Application Layer IDS/IPS with iptables☆73Updated 5 years ago
- Templates for Kibana/Logstash to use with Suricata IDPS☆80Updated 8 years ago
- Web service for scanning pcaps with snort☆108Updated 6 years ago
- Wireshark plugin to display Suricata analysis info☆91Updated 2 years ago
- Potiron - Normalize, Index and Visualize Network Capture☆83Updated 5 years ago
- Rule sets for Sagan☆102Updated 3 years ago
- Passive DNS V2☆62Updated 10 years ago
- A Docker container for Moloch based on minimal Debian☆26Updated 8 years ago
- ☆76Updated 2 years ago
- Passive Real-time Asset Detection System☆229Updated 3 months ago
- Plugin for Zeek/Bro which provides http2 decoder/analyzer☆30Updated 3 months ago
- Alienvault ossim☆118Updated 5 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆124Updated 3 years ago
- Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...☆72Updated 5 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 5 years ago
- ☆52Updated this week
- Suricata Extreme Performance Tuning guide☆202Updated 6 years ago
- Passive DNS collection using Zeek☆181Updated last year
- Core elements of the Modern Honey Network implemented in Docker☆32Updated 2 years ago
- brostash: Linux distribution based on Debian and focusing on network security events collection☆34Updated 4 years ago
- Some scripts for attacks on Tacacs+ protocol☆64Updated 5 years ago
- Ready to run scripts for network analysis☆83Updated 3 weeks ago
- The PCAP Analyzer for Splunk includes useful Dashboards to analyze network packet capture files from Wireshark or Network Monitor (.pcap)…☆40Updated 8 months ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆78Updated 8 years ago
- YALIH (Yet Another Low Interaction Honeyclient) is a low Interaction Client honeypot designed to detect malicious websites through signat…☆68Updated 5 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆110Updated 5 years ago