High level language for describing protocol parsers.
☆76Oct 10, 2025Updated 5 months ago
Alternatives and similar repositories for binpac
Users that are interested in binpac are comparing it to the libraries listed below
Sorting:
- ☆21Oct 16, 2021Updated 4 years ago
- Bro scripts to monitor for new hosts within a subnet range that aren't whitelisted/vetted.☆13Jun 28, 2013Updated 12 years ago
- **NOTE**: This is outdated and no longer maintained. There's a new version at https://github.com/zeek/spicy.☆41Aug 22, 2017Updated 8 years ago
- Bro Snippets☆21Nov 7, 2014Updated 11 years ago
- A Tool for Intersecting Context-Free Grammars☆10Dec 19, 2017Updated 8 years ago
- [ICFEM2017 / IEEE Transactions on Reliability] Learning Type for Binary / Type Learning for Binaries and its Applications☆15Sep 14, 2018Updated 7 years ago
- An Input Validator for HTTP based on Context-free Languages☆15Apr 27, 2017Updated 8 years ago
- Growing collection of Spicy-based protocol and file analyzers for Zeek☆32Sep 16, 2024Updated last year
- Zeek Auxiliary Programs☆27Mar 13, 2026Updated last week
- Reconstruct files from QR-code video data☆22Feb 15, 2018Updated 8 years ago
- The default package source of the Zeek Package Manager. Wrote a package? See the README for how to get it included.☆143Mar 6, 2026Updated 2 weeks ago
- Passive DNS server interface compliant to "Common Output Format"☆10Sep 19, 2016Updated 9 years ago
- libdft for win☆51Jul 8, 2013Updated 12 years ago
- A protocol reverse engineer tool written in java.☆30Oct 14, 2016Updated 9 years ago
- A Spicy protocol analyzer for WireGuard☆29Aug 11, 2020Updated 5 years ago
- ☆56Oct 22, 2020Updated 5 years ago
- A book about how to conduct digital forensic investigations with free and open source tools.☆12Apr 30, 2014Updated 11 years ago
- Extract files from network traffic with Zeek.☆102Mar 17, 2020Updated 6 years ago
- A set of ICS IDS rules for use with Suricata.☆52Oct 13, 2023Updated 2 years ago
- Rusticata: Rust parsers for Suricata (test code)☆101Aug 26, 2024Updated last year
- Creating function call graphs based on radare2 framwork, plot fancy graphs and extract behavior indicators☆33Dec 11, 2016Updated 9 years ago
- Auxiliary scripts for Incident Response with ELK☆11Oct 7, 2015Updated 10 years ago
- LLVM pass☆23Jun 23, 2020Updated 5 years ago
- Python script that gets IOC from MISP and converts it into BRO intel files.☆13Apr 17, 2016Updated 9 years ago
- A framework that correlates Bro events☆18Oct 25, 2013Updated 12 years ago
- DyAnnotationExtractor is software for extracting annotations (highlighted text and comments) from e-documents like PDF.☆38Apr 15, 2025Updated 11 months ago
- Script for pulling events from a MISP database and converting them to Autofocus queries.☆13Dec 28, 2015Updated 10 years ago
- Network traffic classification library that requires minimal application payload☆218Aug 13, 2024Updated last year
- The malsource dataset☆12Aug 31, 2021Updated 4 years ago
- Mercury: network metadata capture and analysis☆501Updated this week
- Random scripts for log mining, intel gathering, network querying, and other incident response-ish activities☆16Sep 13, 2022Updated 3 years ago
- a cross platform disk/folder usage tool made by node-webkit☆105May 5, 2014Updated 11 years ago
- Python script to pull various IOCs from PDFs☆15Dec 22, 2014Updated 11 years ago
- Extract information from MISP via the API☆16Jul 18, 2016Updated 9 years ago
- Go driver for ragel scanners☆39Apr 18, 2020Updated 5 years ago
- modbus fuzzer based on boofuzz framework.!! Cool☆31Aug 10, 2025Updated 7 months ago
- Community-based CybergON-powered Suricata rules☆12Jul 5, 2022Updated 3 years ago
- Analysis scripts for the Bro Intrusion Detection System☆59Feb 26, 2014Updated 12 years ago
- Framework for interacting with systemd-journald☆18Updated this week