ChopShop Logo

ChopShop

0
Free
Visit Website

ChopShop is a MITRE developed framework to aid analysts in the creation and execution of pynids based decoders and detectors of APT tradecraft. Note that ChopShop is still in perpetual beta and is dependent on libnids/pynids for the majority of its underlying functionality. Documentation for ChopShop can be found on ReadTheDocs. Note: There is a known issue when running ChopShop on Ubuntu where the version of pynids obtained via apt causes an ImportError. Per https://bugs.launchpad.net/ubuntu/+source/python-nids/+bug/795991, this issue affects some variants of at least 11.10 and 12.04. A workaround is to compile pynids from source which can be obtained from https://github.com/MITRECND/pynids/.

FEATURES

ALTERNATIVES

Open source framework for network traffic analysis with advanced features.

A free open-source security tool for macOS to detect unauthorized physical access.

Port listener / honeypot in Rust with protocol guessing, safe string display and rudimentary SQLite logging.

A honeypot that emulates a Belkin N300 Home Wireless router with default setup to observe traffic

A featured networking utility for reading and writing data across network connections with advanced capabilities.

Tcpreplay is a network traffic editing and replay tool used for testing network devices and applications.

A tool for analyzing TCP packet traces with color support.

Open-source set of libraries and drivers to accelerate network performance.

PINNED