iMISP
iMISP is an Instant Messenger Honeypot designed to detect and analyze malicious activities in instant messaging platforms. It captures and logs chat conversations, files exchanged, and other interactions between the honeypot and the attacker. iMISP is a powerful tool for incident response, threat hunting, and malware analysis. It can be used to detect and analyze various types of attacks, including phishing, malware distribution, and command and control (C2) communication.
FEATURES
ALTERNATIVES
Exploiting simple stack overflow vulnerabilities using return oriented programming (ROP) to defeat data execution prevention - DEP.
MIDAS (Mac Intrusion Detection Analysis System) - archived and no longer supported.
A textmode sniffer for tracking tcp streams and capturing data in various modes.
WiGLE.net is a platform that collects and provides data on WiFi networks and cell towers, with over 1.3 billion networks collected.
A Docker container that starts a SSH honeypot and reports statistics to the SANS ISC DShield project
An analyzer for parsing GQUIC traffic in Zeek, supporting versions Q039 to Q046, with a fingerprinting method named 'CYU' for detecting anomalous GQUIC traffic.
Snort 3 is the next generation Snort IPS with enhanced features and improved cross-platform support.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Mandos Brief Newsletter
A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.
Kriptos
An AI-driven data classification and governance platform that automatically discovers, analyzes, and labels sensitive information while providing risk management and compliance capabilities.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.