A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
Zeek Remote desktop fingerprinting script based on FATT (Fingerprint All The Things). This is a Zeek package used to fingerprint Remote Desktop clients by extracting fields from different data packets to create a unique fingerprint log with details like client version, encryption method, flags, and more.
A blog sharing packet capture files and malware samples for training and analysis, with archived posts and traffic analysis exercises.
A service for better visibility on networking issues in Kubernetes clusters by detecting traffic denied by iptables.
Open source security-oriented language for describing protocols and applying security policies on captured traffic.
Python module for fast packet parsing with TCP/IP protocol definitions.
A simple text viewer for Prompt(1) sessions
An open source platform for secure remote access management with granular access control and fast speeds.