snort
Snort is an open source intrusion prevention system capable of real-time traffic analysis and packet logging. It uses a series of rules to define malicious network activity and generates alerts for users. It can be deployed inline to stop malicious packets and can be used as a packet sniffer, packet logger, or a full-blown network intrusion prevention system. Snort has two sets of rules: the Community Ruleset and the Snort Subscriber Ruleset. The Snort Subscriber Ruleset is developed, tested, and approved by Cisco Talos, while the Community Ruleset is developed by the Snort community and QAed by Cisco Talos. To get started with Snort, users need to download and install the source code, sign up and get an Oinkcode, and configure the rules.
FEATURES
ALTERNATIVES
A tool for scanning networks, enumerating Siemens PLCs, and gathering detailed information about them.
A set of Go-based emulators for testing network security and analyzing network traffic.
Tcpreplay is a suite of Open Source utilities for editing and replaying captured network traffic.
CrowdSec is a behavior detection engine with a global IP reputation network.
A printer honeypot PoC that simulates a printer on a network to detect and analyze potential attackers.
A smart SSRF scanner using different methods like parameter brute forcing in post and get requests.
Exploiting simple stack overflow vulnerabilities using return oriented programming (ROP) to defeat data execution prevention - DEP.
A network protocol panic button operating decentralized through UDP broadcasts and HTTP, intended for sensitive networks to prevent cold boot attacks.
PINNED
InfoSecHired
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
System Two Security
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido Security
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.