GRASSMARLIN provides IP network situational awareness of industrial control systems (ICS) and Supervisory Control and Data Acquisition (SCADA) networks to support network security. Passively map, and visually display, an ICS/SCADA network topology while safely conducting device discovery, accounting, and reporting on these critical cyber-physical systems. Documentation: GrassMarlin v3.2 User Guide: Download PDF View PDF on GitHub A presentation on GRASSMARLIN is also available. Release: Download the latest release. File hashes are located in FileHash.md. License: See LICENSE.md. Disclaimer: See DISCLAIMER.md.
FEATURES
SIMILAR TOOLS
Suricata offers real-time intrusion detection, intrusion prevention, and network monitoring.
A Linux command-line tool that allows you to kill in-progress TCP connections based on a filter expression, useful for libnids-based applications that require a full TCP 3-way handshake for TCB creation.
Unfurl is a URL analysis tool that extracts and visualizes data from URLs, breaking them down into components and presenting the information visually.
NordVPN is a commercial VPN service that encrypts internet connections and hides IP addresses through a global network of servers, featuring integrated threat protection and multi-device support.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
Tcpreplay is a suite of Open Source utilities for editing and replaying captured network traffic.
A free DNS recursive service that blocks malicious host names and protects user privacy.
A TCP-based traceroute implementation that bypasses firewall filters to trace the path to a destination.
A Bluetooth 5 and 4.x sniffer using TI CC1352/CC26x2 hardware with advanced features and Python-based host-side software.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.