Honeycomb Logo

Honeycomb

0
Free
Visit Website

Honeycomb is a system for automated generation of signatures for network intrusion detection systems (NIDSs) by applying protocol analysis and pattern-detection techniques to traffic captured on honeypots. It is particularly effective at spotting worms and can create detailed signatures for known threats like Slammer and Code Red. The system can be used to actively search for signatures in any kind of traffic and has potential applications in spam detection.

FEATURES

ALTERNATIVES

A tool to discover new target domains using Content Security Policy

CapTipper is a python tool to analyze, explore, and revive HTTP malicious traffic.

A tool for scanning networks, enumerating Siemens PLCs, and gathering detailed information about them.

A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.

A multi-threaded scanner for identifying CORS flaws and misconfigurations

Fake SSH server that sends push notifications for login attempts

A free open-source security tool for macOS to detect unauthorized physical access.

A free, open-source network protocol analyzer for capturing and displaying packet-level data.