ChopShop Logo

ChopShop

0
Free
Visit Website

ChopShop is a MITRE developed framework to aid analysts in the creation and execution of pynids based decoders and detectors of APT tradecraft. Note that ChopShop is still in perpetual beta and is dependent on libnids/pynids for the majority of its underlying functionality. Documentation for ChopShop can be found on ReadTheDocs. Note: There is a known issue when running ChopShop on Ubuntu where the version of pynids obtained via apt causes an ImportError. Per https://bugs.launchpad.net/ubuntu/+source/python-nids/+bug/795991, this issue affects some variants of at least 11.10 and 12.04. A workaround is to compile pynids from source which can be obtained from https://github.com/MITRECND/pynids/.

FEATURES

ALTERNATIVES

A command-line tool for managing and analyzing Microsoft Forefront TMG and UAG configurations.

Exploiting simple stack overflow vulnerabilities using return oriented programming (ROP) to defeat data execution prevention - DEP.

An open source, self-hosted implementation of the Tailscale control server.

A tool for discovering and enumerating external attack surfaces

A multi-threaded intrusion detection system using Yara for network and stream IDS

Romana automates cloud native network creation and secures applications with a distributed firewall.

A fast and flexible web fuzzer for identifying vulnerabilities in web applications

A package for capturing and analyzing network flow data and intraflow data.