hosom

@github

Pinned Repositories

bro-auth
Authentication framework for Bro IDS.
Language:Bro8 5 02
bro-napatech
Napatech packet source plugin for Bro
Language:C++3 3 11
bro-otx
Integrate Zeek with Alienvault OTX
Language:Python25 2 516
bro-phishing
Detect Phishing with Bro IDS
Language:Bro18 4 012
bro-scripts
Bro stuff.
Language:Bro12 6 05
file-extraction
Extract files from network traffic with Zeek.
Language:Zeek99 13 1247
honeycred
Utility to inject honey tokens into lsass.
Language:Go27 2 36
odd-services
Detect weird services on a network.
Language:Bro8 3 03
PunkSpiderSearch
Python Script that allows you to search PunkSpider in bulk requests and then output to a csv file or stdout.
Language:Python9 3 03
svalinn
Windows Password Filter
Language:C++5 1 03

hosom's Repositories

hosom/file-extraction
Extract files from network traffic with Zeek.
Language:Zeek99 13 1247
hosom/bro-otx
Integrate Zeek with Alienvault OTX
Language:Python25 2 516
hosom/bro-ja3
ja3 ssl fingerprinting for bro
Language:Bro2 1 12
hosom/bro-oui
Add an OUI lookup to Bro IDS.
Language:Bro1 1 02
hosom/dummy-connections
Create connection records without having real connections.
Language:Bro1 1 0
hosom/log-filters
Common log filters for Zeek IDS
Language:Zeek1 1 01
hosom/opencanary
Modular and decentralised honeypot
Language:Python1 1 0
hosom/bro-cron
Schedule shell commands with Bro.
Language:Bro1 0
hosom/bro-environment
Learn and document your environment with Bro IDS.
Language:Bro2 0
hosom/bro-packages
Bro packages. Possibly unstable. I release here before anywhere else.
1 0
hosom/broctl
Tool for managing Bro deployments.
Language:Python1 0
hosom/brointelutils
Utilities for Bro Intel Sources
Language:Go1 0
hosom/broker
Bro's Messaging Library
Language:C++1 0
hosom/cbapi-python
Carbon Black API - Python language bindings
Language:Python1 0
hosom/docker-bro
Bro IDS Dockerfile
Language:Bro1 0
hosom/heimdall
very simple blocklist daemon
1 0
hosom/known-dhcp-nets
Log DHCP networks seen assigned by DHCP servers
Language:Bro1 0
hosom/nrol-39-logo
A vector PDF of the official mission logo of NROL-39
1 0
hosom/ntdedupe
napatech based packet deduplication tool
Language:C++1 0
hosom/octokit.rb
Ruby toolkit for the GitHub API
Language:Ruby0 0
hosom/packages
The default package source of the Zeek Package Manager
1 0
hosom/recently-compiled-pes
Detect PE files with a recent compile time.
Language:Bro1 0
hosom/stenographer
Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@googlegroups.com
Language:Go1 0
hosom/tailscale-client-go
A client implementation for the Tailscale HTTP API
Language:Go
hosom/ufbuilder
Shell utilities to generate self extracting installers for the Splunk Universal Forwarder.
Language:Shell1 0
hosom/vault-ruby
The official Ruby client for HashiCorp's Vault
Language:Ruby0 0
hosom/vscode_notes_template
Template repository for building notebooks in vscode
2 0
hosom/windows-event-forwarding
A repository for using windows event forwarding for incident detection and response
Language:Roff1 0
hosom/WindowsEventForwarding
Documentation and files for Windows Event Forwarding
Language:Roff1 0
hosom/zeek
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
Language:Bro1 0