A set of interrelated detection rules for improving detection and hunting visibility and context
With the techniques in this book, you can safely use honeypots inside your network to detect adversaries before they accomplish their goals. IDH redefines the role of honeypots and demonstrates why they are a critical facet of network defense. Practical Packet Analysis (Third Edition) will teach you to make sense of your packet captures so that you can better troubleshoot network problems and investigate security incidents.
A set of interrelated detection rules for improving detection and hunting visibility and context
6Guard is an IPv6 attack detector sponsored by Google Summer of Code 2012 and supported by The Honeynet Project organization.
A fast domain resolver and subdomain bruteforcing tool
A honeytoken-based tripwire for Microsoft's Active Directory to detect privilege escalation attempts
FingerprintX is a standalone utility for service discovery on open ports.
Passive SSL client fingerprinting tool using handshake analysis.