Alternatives and similar repositories for CapAnalysis

Users that are interested in CapAnalysis are comparing it to the libraries listed below

• plashchynski / viewssld
  viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…
  ☆74Updated 7 years ago
• Cisco-Talos / file2pcap
  ☆172Updated 3 years ago
• gamelinux / prads
  Passive Real-time Asset Detection System
  ☆238Updated last year
• regit / suriwire
  Wireshark plugin to display Suricata analysis info
  ☆94Updated 3 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆104Updated 4 years ago
• xplico / xplico
  Open Source Network Forensic Analysis Tool (NFAT)
  ☆191Updated 4 years ago
• Cisco-Talos / Daemonlogger
  The Official Github Repository of Daemonlogger
  ☆22Updated 4 years ago
• pevma / Suricata-Logstash-Templates
  Templates for Kibana/Logstash to use with Suricata IDPS
  ☆80Updated 9 years ago
• kost / docker-moloch
  A Docker container for Moloch based on minimal Debian
  ☆26Updated 9 years ago
• mrash / fwsnort
  Application Layer IDS/IPS with iptables
  ☆76Updated 6 years ago
• Yara-Rules / yara-endpoint
  Yara-Endpoint is a tool useful for incident response as well as anti-malware enpoint base on Yara signatures.
  ☆109Updated 7 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆109Updated 6 years ago
• trisulnsm / trisul-scripts
  Ready to run scripts for network analysis
  ☆88Updated 2 months ago
• CIRCL / potiron
  Potiron - Normalize, Index and Visualize Network Capture
  ☆86Updated 6 years ago
• hpfeeds / hpfeeds
  Honeynet Project generic authenticated datafeed protocol
  ☆214Updated last year
• int13h / squert
  A Simple QUEry and Report Tool
  ☆142Updated 5 years ago
• MITRECND / yaraprocessor
  Yara is awesome, but sometimes you need to manipulate the data streams you're scanning in different ways.
  ☆97Updated 10 years ago
• digitalbond / Quickdraw-Suricata
  A set of ICS IDS rules for use with Suricata.
  ☆50Updated last year
• MattCarothers / mhn-core-docker
  Core elements of the Modern Honey Network implemented in Docker
  ☆34Updated 3 years ago
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆43Updated 3 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆199Updated 3 years ago
• MITRECND / bro-http2
  Plugin for Zeek/Bro which provides http2 decoder/analyzer
  ☆31Updated 11 months ago
• Masood-M / yalih
  YALIH (Yet Another Low Interaction Honeyclient) is a low Interaction Client honeypot designed to detect malicious websites through signat…
  ☆68Updated 5 years ago
• EmergingThreats / et-luajit-scripts
  ☆75Updated 3 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆112Updated 6 years ago
• felixe / idsEventGenerator
  aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…
  ☆22Updated 6 years ago
• neu5ron / malware-traffic-analysis-pcaps
  malware-traffic-analysis.net PCAPs repository.
  ☆36Updated 8 years ago
• fygrave / honeyntp
  NTP logger/honeypot
  ☆53Updated 11 years ago
• azizaltuntas / Network-Analysis-Tools
  Pcap (capture file) Analysis Toolkit(v.1)
  ☆106Updated 8 years ago