cheengon's Stars
mitre-attack/car
Cyber Analytics Repository
n00py/NorkNork
Powershell Empire Persistence finder
LiamRandall/bro-scripts
Bro scripts to be shared with the community
zeek/zeek
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
arkime/arkime
Arkime is an open source, large scale, full packet capturing, indexing, and database system.
mozilla/MozDef
DEPRECATED - MozDef: Mozilla Enterprise Defense Platform
gamelinux/passivedns
A network sniffer that logs all DNS server replies for use in a passive DNS setup
cuckoosandbox/cuckoo
Cuckoo Sandbox is an automated dynamic malware analysis system
chrissanders/FlowBAT
Network Flow Basic Analysis Tool
siltecon/bronion
Import Bro logs from SecurityOnion into Logstash
google/grr
GRR Rapid Response: remote live forensics for incident response