CyberTaoFlow

@onShoreSecurity Chicago, Illinois USA

Pinned Repositories

aaalm
Generate network maps from packet captures
Language:JavaScript1 1 00
barnyard2-extra
Barnyard2 with "Extra Data" support and other enhancements.
Language:C1 2 00
bro-json-to-tsv
(DEPRICATED) Bro JSON to TSV converter.
Language:Python1 1 00
bzar
A set of Zeek scripts to detect ATT&CK techniques.
Language:Zeek1 1 00
Cortex-IR-Incident-Fetcher
The program helps fetched incidents from Cortex XDR IR and index to ElasticSearch for report
Language:Python1 1 00
Daemonlogger
The Official Github Repository of Daemonlogger
Language:C1 2 00
daemonloggerdaq
Daemonlogger modified to use DAQ, primarily for listening on multiple interfaces
Language:C1 2 00
ecs-mapping
Grab bag of resources for mapping data to the Elastic Common Schema (ECS)
Language:Python1 1 00
ElastAlertGrouper
A feature extension to ease the automation of Threat Hunting with ElastAlert and the ELK Stack
Language:Python1 2 00
email-parser
Trying to parse some SMTP with Python 2.x
Language:JavaScript2 2 01

CyberTaoFlow's Repositories

CyberTaoFlow/aaalm
Generate network maps from packet captures
Language:JavaScript1 1 00
CyberTaoFlow/barnyard2-extra
Barnyard2 with "Extra Data" support and other enhancements.
Language:C1 2 00
CyberTaoFlow/Cortex-IR-Incident-Fetcher
The program helps fetched incidents from Cortex XDR IR and index to ElasticSearch for report
Language:Python1 1 00
CyberTaoFlow/Daemonlogger
The Official Github Repository of Daemonlogger
Language:C1 2 00
CyberTaoFlow/graphdatamap
Graph Data Map Project
1 1 0
CyberTaoFlow/gulp
Lossless Gigabit Remote Packet Capture With Linux
Language:C1 1 0
CyberTaoFlow/hosom_bro-file-extraction
Convenience wrapper for extracting files in bro
Language:Bro1 2 0
CyberTaoFlow/IBAN-Validator-with-regex
Iban Validation Program
Language:Java1 1 01
CyberTaoFlow/meer
Meer (GPLv2) is a dedicated "spooler" for the Suricata & Sagan EVE output formats.
Language:C1 1 0
CyberTaoFlow/monopticon
Monitor ethernet traffic in real time with a 3D backend.
Language:CMake1 1 0
CyberTaoFlow/mt103
Parse MT103 messages from the Swift payments network
Language:Python1 2 0
CyberTaoFlow/netbase
Netbase, short for Network Baseliner is a Zeek framework for making and recording quantitative observations about network device activity.
Language:Zeek1 1 0
CyberTaoFlow/PacketSorter
TCP packet sorter
Language:CMake1 1 0
CyberTaoFlow/readonlyrest-docs
Official Documentation of ReadonlyREST Plugin
1 1 0
CyberTaoFlow/sagan-rules
Rule sets for Sagan
1 2 0
CyberTaoFlow/suricata-rules
Suricata IDS rules
1 1 0
CyberTaoFlow/zeek-httpattacks
This module detects HTTP requests that are non RFC compliant and used for smuggling
Language:Zeek1 1 0
CyberTaoFlow/zeek-scripts
zeek-scripts
Language:Bro1 1 0
CyberTaoFlow/zeek_anomaly_detector
An anomaly detector for conn.log files in Zeek/Bro. Completely Automatic
Language:Python1 1 0
CyberTaoFlow/bitscout
Language:Shell1 0
CyberTaoFlow/BusinessSpew
The BS Generator creates blocks of valid English language sentences comprised solely of jargon, slang and nonsense.
Language:Ruby2 0
CyberTaoFlow/captop
Utility to measure the performance of pcap network interfaces.
Language:C++1 0
CyberTaoFlow/Decept
Decept Network Protocol Proxy
Language:Python2 0
CyberTaoFlow/eml_parser
python eml parser module
Language:Python2 0
CyberTaoFlow/flow_labels
Provides a mechanism for loading knowledge about a monitored environment into Zeek.
Language:Bro1 0
CyberTaoFlow/generic-parser
A Single Library Parser to extract meta information,static analysis and detect macros within the files.
Language:Python2 06
CyberTaoFlow/libflowbypass
Experimental XDP bypass stuff
Language:C1 0
CyberTaoFlow/port-mirror
A Windows port to the port-mirror utility
Language:Shell2 0
CyberTaoFlow/python-elk
This is a super-basic set of scripts to show "simple" ways to get data into or out of the Elastic stack using python.
Language:Python1 0
CyberTaoFlow/rock-suricata
Repo for suricata signatures and signature deployment workflow.
1 0