network-security-monitoring

There are 40 repositories under network-security-monitoring topic.

Security-Onion-Solutions/security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
3.1k 301 1.8k521
rafael-santiago/pig
A Linux packet crafting tool.
Language:C462 27 537
codeexpress/respounder
Respounder detects presence of responder in the network.
Language:Go316 17 438
corelight/community-id-spec
An open standard for hashing network flows into identifiers, a.k.a "Community IDs".
Language:Python174 23 2625
0xtf/nsm-attack
Mapping NSM rules to MITRE ATT&CK
68 6 424
mytechnotalent/Zeek-Network-Security-Monitor
A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the necessary hardware and setup and finally provide some examples of how you can use the power of Zeek to have absolute control over your network.
Language:Zeek61 6 011
0xtf/testmynids.org
A website and framework for testing NIDS detection
Language:Shell56 5 34
tatsuiman/rpot2
Real-time Packet Observation Tool
Language:Bro39 9 26
3CORESec/AWS-AutoMirror
Automation of VPC Traffic Mirror Sessions in AWS
Language:JavaScript35 5 83
edoardottt/boggart
Highly customizable low-interaction experimental honeypot that mimics specific hosts.
Language:Go32 4 154
jxnet/Jxnet
Jxnet is a Java library for capturing and sending custom network packet buffers with no copies. Jxnet wraps a native packet capture library (libpcap/winpcap/npcap) via JNI (Java Native Interface).
Language:Java26 6 14
corelight/pycommunityid
A Python implementation of the Community ID flow hashing standard
Language:Python23 7 410
alonecoder1337/Dos-Attack-Detection-using-Machine-Learning
A machine learning program, that detects denial of service attack using machine learning technique.
Language:Python22 3 115
satta/gommunityid
Go implementation of the Community ID flow hashing standard
Language:Go20 3 24
3CORESec/AWS-Mirror-Toolkit
A set of tools and procedures for automating NSM and NIDS deployments in AWS
16 4 05
Truvis/Splunk_TA_Truvis_Suricata5
This TA takes Suricata5 data from your port mirrored Suricata server and makes it readable within Splunk. See Cheatsheets on how to setup a Suricata Port Mirrored Server
15 4 01
imsiddhant/Palo-Alto-Networks-Cybersecurity-Specialization
This repository shows all the hands on experience on Palo Alto Firewall, assignment and projects I have done in My Palo Alto Specialization Journey.
6 1 05
0snap/broker-application-templates
Templates for writing applications using Zeek NSM communication library Broker
Language:Python5 2 00
diveyez/fw.sh
Linux Network Defense Scripting (BASH)
Language:Shell5 1 00
3CORESec/AWS-TMS-Remover
Automate the deletion of AWS VPC Traffic Mirror Sessions
Language:Python3 3 11
vrikodar/Wizard
A Full Fledged iptables Firewall automation framework For Linux with Log monitoring..
Language:Shell3 2 02
githubfoam/zeek-sandbox
zeek network security monitoring NIDS HIDS
Language:Ruby2 1 2
jsutch/RITA_Scripts
Scripts and Notebooks for doing IDS analysis of Zeek/RITA outputs
Language:Jupyter Notebook2 2 00
tsikerdekis/overnight-hercules-network-security
Overnight Hercules for Network Security: Become a Security Analyst book
2 1 00
3CORESec/AWS-Config-MirrorSession
Check compliance of EC2 instances for session mirroring
Language:JavaScript1 3 0
adkauf/nmap-mon
Automated monitoring and alerting for network changes
Language:Shell1 1 01
ArcticDev78/netsploit-py
Use nmap and other network tools easily and efficiently
Language:Python1 1 20
githubfoam/suricata-sandbox
network security monitoring NIDS HIDS CTI DFIR
1 1 2
tristanluther28/network_security_project
ECE 478 Client Fingerprinting Techniques
Language:PHP1 1 01
7elmie/CCNA-3-Lab-S-4-U
This a Full CCNA 3 Lab'S Ans From the Start To the End and More Can You Comment in that or edit to more since or information about that field or any update or upgrade about that Lab'S
0 1 00
decompile/community-id-dotnet-core
A C# .net core implementation of the Community ID flow hashing standard
Language:C#0 1 00
lanl/rhelhostinfo
Use the host-as-sensor model to enumerate security-relevant information about a RHEL host and the surrounding network, identifying and reporting changes via syslog. Written in python3.
Language:Python0 5 00
githubfoam/k8s-ebpf-sandbox
kubernetes ebpf
Language:Shell1 2
githubfoam/openvas-sandbox
openvas network security monitoring NIDS HIDS
Language:Jinja1 2
tsikerdekis/overnight-hercules-network-security-opensearch-image
Overnight Hercules for Network Security: Become a Security Analyst - NSM Opensearch Image
Language:Shell1 0
wahaj/Snort-IDS
A detailed basic setup config for the GNS3 Virtual Machine. This config aims to setup a software-based Intrusion Detection System with the highly popular software IDS "Snort"
1 11

network-security-monitoring

Security-Onion-Solutions/security-onion

rafael-santiago/pig

codeexpress/respounder

corelight/community-id-spec

0xtf/nsm-attack

mytechnotalent/Zeek-Network-Security-Monitor

0xtf/testmynids.org

tatsuiman/rpot2

3CORESec/AWS-AutoMirror

edoardottt/boggart

jxnet/Jxnet

corelight/pycommunityid

alonecoder1337/Dos-Attack-Detection-using-Machine-Learning

satta/gommunityid

3CORESec/AWS-Mirror-Toolkit

Truvis/Splunk_TA_Truvis_Suricata5

imsiddhant/Palo-Alto-Networks-Cybersecurity-Specialization

0snap/broker-application-templates

diveyez/fw.sh

3CORESec/AWS-TMS-Remover

vrikodar/Wizard

githubfoam/zeek-sandbox

jsutch/RITA_Scripts

tsikerdekis/overnight-hercules-network-security

3CORESec/AWS-Config-MirrorSession

adkauf/nmap-mon

ArcticDev78/netsploit-py

githubfoam/suricata-sandbox

tristanluther28/network_security_project

7elmie/CCNA-3-Lab-S-4-U

decompile/community-id-dotnet-core

lanl/rhelhostinfo

githubfoam/k8s-ebpf-sandbox

githubfoam/openvas-sandbox

tsikerdekis/overnight-hercules-network-security-opensearch-image

wahaj/Snort-IDS