BZAR
0 (0)
A set of Bro/Zeek scripts that detect ATT&CK-based adversarial activity and raise notices
sslhaf is a Passive SSL client fingerprinting tool that utilizes handshake analysis to identify clients. The instructions for using sslhaf are included in the source code file mod_sslhaf.c.
A set of Bro/Zeek scripts that detect ATT&CK-based adversarial activity and raise notices
A fast CLI tool to find SSRF or Out-of-band resource load
A honeypot designed to detect and analyze malicious activities in instant messaging platforms.
A tool for classifying packets into flows based on 4-tuple without additional processing.
A network responder supporting various protocols with minimal assumptions on client intentions.
A tool for domain recognition and subdomain monitoring