Impost

0 (0)

Impost is a network security auditing tool designed to analyze the forensics behind compromised and/or vulnerable daemons. There are two different operating modes: acting as a honey pot controlled by a Perl script or operating as a packet sniffer monitoring incoming data to specified destination ports. It keeps a history of incoming buffers for each connection and creates log files with suspicious data for analysis.

Network Security

Free

honey-pot network-security auditing forensics

ALTERNATIVES

aquatone

0 (0)

A tool for domain flyovers

Network Security

Free

dns nmap python port-scanning

Libcrafter

0 (0)

A high-level C++ library for creating and decoding network packets with a Scapy-like interface.

Network Security

Free

network-security scapy packet-crafting

OVIZART

0 (0)

Django based web application for network traffic analysis with protocol handling capabilities.

Network Security

Free

python protocol-analysis django network-traffic

ChopShop

0 (0)

A framework for creating and executing pynids-based decoders and detectors of APT tradecraft

Network Security

Free

binary-security c2 command-and-control cybersecurity forensics framework infosec apt

InternalBlue

0 (0)

Bluetooth experimentation framework for Broadcom chips firmware interaction and update.

Network Security

Free

blue-team firmware-analysis reverse-engineering research bluetooth

Passive Network Audit Framework (PNAF) v0.1.2

0 (0)

Passive Network Audit Framework (PNAF) v0.1.2 provides passive network auditing capabilities and is now a project of COSMIC-Chapter of The Honeynet Project.

Network Security

Free

docker network-security