pycommunityidA Python implementation of the Community ID flow hashing standard
Stars: ✭ 18 (-67.27%)
Zeek-Network-Security-MonitorA Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.
Stars: ✭ 38 (-30.91%)
community-id-specAn open standard for hashing network flows into identifiers, a.k.a "Community IDs".
Stars: ✭ 137 (+149.09%)
ivreNetwork recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Stars: ✭ 2,712 (+4830.91%)
d4-coreD4 core software (server and sample sensor client)
Stars: ✭ 40 (-27.27%)
Suricata UpdateThe tool for updating your Suricata rules.
Stars: ✭ 143 (+160%)
Hack-UtilsScript to facilitate different functions and checks
Stars: ✭ 27 (-50.91%)
JxnetJxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).
Stars: ✭ 26 (-52.73%)
masscannedLet's be scanned. A low-interaction honeypot focused on network scanners and bots. It integrates very well with IVRE to build a self-hosted alternative to GreyNoise.
Stars: ✭ 50 (-9.09%)
QnsmQNSM is network security monitoring framework based on DPDK.
Stars: ✭ 334 (+507.27%)
gonidsgonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/
Stars: ✭ 140 (+154.55%)
BGP-RankingBGP ranking is a free software to calculate the security ranking of Internet Service Provider (ASN)
Stars: ✭ 49 (-10.91%)
nsm-attackMapping NSM rules to MITRE ATT&CK
Stars: ✭ 53 (-3.64%)
NfstreamNFStream: a Flexible Network Data Analysis Framework.
Stars: ✭ 622 (+1030.91%)
IvreNetwork recon framework, published by @cea-sec & @ANSSI-FR. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run your Passive DNS service, collect and analyse network intelligence from your sensors, and much more!
Stars: ✭ 2,331 (+4138.18%)
Zxrequestblock基于NSURLProtocol一句话实现iOS应用底层所有网络请求拦截(含网页ajax请求拦截【不支持WKWebView】)、一句话实现防抓包(使Thor,Charles,Burp等代理抓包方式全部失效,且即使开启了代理,也不影响App内部的正常请求)。包含http-dns解决方法,有效防止DNS劫持。用于分析http,https请求等
Stars: ✭ 160 (+190.91%)
ansibleAnsible playbook automation for pfelk
Stars: ✭ 23 (-58.18%)
pwk scriptsAutomation scripts in preparation for PWK/OSCP labs
Stars: ✭ 16 (-70.91%)
S1EMThis project is a SIEM with SIRP and Threat Intel, all in one.
Stars: ✭ 270 (+390.91%)
feverfast, extensible, versatile event router for Suricata's EVE-JSON format
Stars: ✭ 47 (-14.55%)
ansible-zeeksetup zeek, previously Bro IDS
Stars: ✭ 14 (-74.55%)
telemetryOpen-source datasets for anyone interested in working with network anomaly based machine learning, data science and research
Stars: ✭ 93 (+69.09%)
Py Idstoolsidstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
Stars: ✭ 205 (+272.73%)
NetToolmacOS 状态栏小工具实时显示网速. macOS menubar tool to monitor network speed.
Stars: ✭ 74 (+34.55%)
NetworkAlarmA tool to monitor local network traffic for possible security vulnerabilities. Warns user against possible nmap scans, Nikto scans, credentials sent in-the-clear, and shellshock attacks. Currently supports live monitoring and network capture (pcap) scanning.
Stars: ✭ 17 (-69.09%)
AWS-Mirror-ToolkitA set of tools and procedures for automating NSM and NIDS deployments in AWS
Stars: ✭ 16 (-70.91%)
sharppcapOfficial repository - Fully managed, cross platform (Windows, Mac, Linux) .NET library for capturing packets
Stars: ✭ 1,054 (+1816.36%)
SuperLibraryInformation Security Library
Stars: ✭ 60 (+9.09%)
FireKylin🔥火麒麟-网络安全应急响应工具(系统痕迹采集)Cybersecurity emergency response tool.👍👍👍
Stars: ✭ 595 (+981.82%)
NfrA lightweight tool to score network traffic and flag anomalies
Stars: ✭ 104 (+89.09%)
Cve 2020 16898CVE-2020-16898 (Bad Neighbor) Microsoft Windows TCP/IP Vulnerability Detection Logic and Rule
Stars: ✭ 207 (+276.36%)
DirectFire ConverterDirectFire Firewall Converter - Network Security, Next-Generation Firewall Configuration Conversion, Firewall Syntax Translation and Firewall Migration Tool - supports Cisco ASA, Fortinet FortiGate (FortiOS), Juniper SRX (JunOS), SSG / Netscreen (ScreenOS) and WatchGuard (support for further devices in development). Similar to FortiConverter, Sm…
Stars: ✭ 34 (-38.18%)
BriaridsAn All-In-One home intrusion detection system (IDS) solution for the Raspberry PI.
Stars: ✭ 187 (+240%)
snort-ruleparses and generates Snort rules similar to PERL's Snort::Rule
Stars: ✭ 12 (-78.18%)
Operation WocaoOperation Wocao - Indicators of Compromise
Stars: ✭ 29 (-47.27%)
D1ProxyA simple yet powerful Java 11 TCP MITM proxy for Dofus 1.29.1
Stars: ✭ 17 (-69.09%)
Dynamite NsmDynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat detection
Stars: ✭ 92 (+67.27%)
matrixmirror of https://mypdns.org/my-privacy-dns/matrix as it is obviously no longer safe to do Girhub nor have we no longer any trust in them. See https://mypdns.org/my-privacy-dns/porn-records/-/issues/1347
Stars: ✭ 32 (-41.82%)
SelksA Suricata based IDS/IPS distro
Stars: ✭ 707 (+1185.45%)
SciriusScirius is a web application for Suricata ruleset management.
Stars: ✭ 435 (+690.91%)
Suricata RulesSuricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
Stars: ✭ 397 (+621.82%)
Guppy-iOSiOS pod about a curious fish named Guppy
Stars: ✭ 42 (-23.64%)
PulledporkPulled Pork for Snort and Suricata rule management (from Google code)
Stars: ✭ 339 (+516.36%)
RealIPThe Spigot, Bungee and Velocity plugin that parses client IP addresses passed from the TCPShield network.
Stars: ✭ 121 (+120%)
EveboxWeb Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
Stars: ✭ 286 (+420%)
flydnsRelated subdomains finder
Stars: ✭ 29 (-47.27%)
dstp🧪 Run common networking tests against any site.
Stars: ✭ 919 (+1570.91%)
brimcapConvert pcap files into richly-typed ZNG summary logs (Zeek, Suricata, and more)
Stars: ✭ 22 (-60%)
vagrant-idsAn Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk
Stars: ✭ 21 (-61.82%)