pkt2flow
A simple utility to classify packets into flows using the 4-tuple (src_ip, dst_ip, src_port, dst_port) without further processing, saving each flow into a pcap file named with the 4-tuple and the timestamp of the first packet of the flow. The tool is designed for Deep Packet Inspection or flow classification purposes.
FEATURES
ALTERNATIVES
Tool used to scan a range of IP addresses to identify active hosts and gather information about them.
Pure Python implementation of Microsoft RDP protocol with various tools and support for different security layers.
OpenSnitch is a GNU/Linux application firewall with interactive outbound connections filtering and system-wide domain blocking capabilities.
Open source security-oriented language for describing protocols and applying security policies on captured traffic.
Detects the presence of a Responder in the network by sending crafted LLMNR queries.
A set of Bro/Zeek scripts that detect ATT&CK-based adversarial activity and raise notices
A multi-threaded intrusion detection system using Yara for network and stream IDS
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.