An analyzer for parsing GQUIC traffic in Zeek, supporting versions Q039 to Q046, with a fingerprinting method named 'CYU' for detecting anomalous GQUIC traffic.
Install required system packages: - apt-get install gcc libpcap-dev iptables - Arch: pacman -S gcc libpcap iptables To change your SSH server default port (i.e. 5001, see rules.yaml) and restart SSHD: - sed -i 's/[# ]*Port .*/Port 5001/g' /etc/ssh/sshd_config Build glutton: - make build To run/test glutton: - bin/server
An analyzer for parsing GQUIC traffic in Zeek, supporting versions Q039 to Q046, with a fingerprinting method named 'CYU' for detecting anomalous GQUIC traffic.
Open source security-oriented language for describing protocols and applying security policies on captured traffic.
Zeek Remote desktop fingerprinting script for fingerprinting Remote Desktop clients.
A python tool for discovering endpoints, parameters, and wordlists in a given target
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
A high-level C++ library for creating and decoding network packets with a Scapy-like interface.