Network Security
Browse 1,311 network security tools
FEATURED
Passive Network Audit Framework (PNAF) v0.1.2 provides passive network auditing capabilities and is now a project of COSMIC-Chapter of The Honeynet Project.
An open source network penetration testing framework with automatic recon and scanning capabilities.
Open source security-oriented language for describing protocols and applying security policies on captured traffic.
A hybrid honeypot framework that combines low and high interaction honeypots for network security
replayproxy allows you to 're-live' a HTTP session captured in a .pcap file, parsing HTTP streams, caching them, and starting a HTTP proxy to reply to requests with matching responses.
A command-line tool that allows SQL queries to be executed directly on PCAP files for network traffic analysis with support for multiple output formats.
A comprehensive guide to network security monitoring, teaching readers how to detect and respond to intrusions using open source software and vendor-neutral tools.
6Guard is an IPv6 attack detector sponsored by Google Summer of Code 2012 and supported by The Honeynet Project organization.
Honeyntp is an NTP honeypot and logging tool that captures NTP packets into a Redis database to detect DDoS attacks and monitor network time protocol traffic.
An Ansible role that automates the deployment and management of Bifrozt honeypots for network security monitoring.
A Graphical Realism Framework for Industrial Control Simulation organized as 5 VirtualBox VMs for realistic ICS network simulation.
A database of Tor exit nodes with their corresponding IP addresses and timestamps.
Romana automates cloud-native network isolation and distributed firewall policies for Kubernetes and OpenStack environments using topology-aware IPAM without overlays.
AWS Network Firewall provides fine-grained control over network traffic and enables easy deployment of firewall security.
CrowdSec is a collaborative behavior detection engine that analyzes system logs to identify and block malicious activities using community-shared threat intelligence.
Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.
A powerful interactive packet manipulation program and library for network exploration and security testing.
A network recon framework including tools for passive and active recon
A reference guide documenting known vulnerabilities in SSL/TLS protocol versions and cipher suites to help security professionals identify insecure configurations.
A nonprofit security organization that collects and shares threat data to make the Internet more secure.
Passively maps and visually displays ICS/SCADA network topology for network security
