zk7 / hershelplus
An improved algorithm for large scale OS fingerprinting
☆17Updated 6 years ago
Alternatives and similar repositories for hershelplus:
Users that are interested in hershelplus are comparing it to the libraries listed below
- Zeek scripts that provide an alternative log file logging TLS/SSL traffic☆10Updated 3 years ago
- GPS is a scanning platform that learns and predicts the location of IPv4 services across all 65K ports.☆67Updated 2 years ago
- ZMapv6: Internet Scanner with IPv6 capabilities☆109Updated last month
- The report of a supervised classifier to detect malware in TLS traffic☆19Updated 5 years ago
- pyJARM is a library for doing JARM fingerprinting using python☆49Updated last week
- This project fully automates the process of analyzing and exploiting IoT malware to find live CnC servers.☆41Updated 8 months ago
- This is an open source Snort rules repository☆30Updated 2 years ago
- Advanced threat detection solution for Linux.☆36Updated 4 years ago
- The project will serve as a central repository for VMware Threat Analysis Unit (TAU) to share threat intelligence with the security commu…☆17Updated 2 years ago
- Passive-Recursive DNS daemon☆26Updated 6 months ago
- Repository of Yara rules created by the Stratosphere team☆26Updated 3 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆101Updated 3 years ago
- Manticore's Public Threats Repository☆10Updated 4 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- Generic and transparent TLS inspection for local programs☆21Updated 5 months ago
- High fidelity JA3 & JA3S combinations for known botnets and alike☆11Updated 6 years ago
- GQUIC Protocol Analyzer for Zeek (Bro) Network Security Monitor☆76Updated last year
- Code for BH21 talk: "Generating YARA Rules by Classifying Malicious Byte Sequences"☆17Updated last month
- Zeek Extension to Collect Metadata for Profiling of Endpoints and Proxies☆30Updated last year
- JA3 TLS Fingerprint database☆77Updated 5 years ago
- goscanner is a tool for large-scale TLS and SSH scans☆31Updated 10 months ago
- Globally distributed honeypots and HoneyNets IOCs and file reversing☆16Updated 11 months ago
- This tool was open sourced as part of JARM Randomizer: Evading JARM Fingerprinting for HiTB Amsterdam 2021.☆47Updated last year
- A set of YARA rules for the AIL framework to detect leak or information disclosure☆38Updated 2 months ago
- Windows GUI/Execution Engine for Atomic Red Team Atomics☆34Updated 4 years ago
- A library and command line tool for extracting indicators of compromise (IOCs) from security reports in PDF, HTML, Word, or text format☆31Updated this week
- Decrypt TLS traffic from a pcap file☆24Updated last year
- Plugin packages that provide custom visualizations and analytics capabilities to Trisul Network Analytics.☆16Updated 2 weeks ago
- zeek-scripts☆44Updated 6 years ago
- YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…☆23Updated 2 years ago