Yara Python ICAP Server Logo

Yara Python ICAP Server

0
Free
Visit Website

An ICAP Server with Yara scanner for URL and content. Requires Squid Proxy 3.5, Python 3, and specific Squid configuration. Can scan content and URLs using Yara rules, providing detailed logs of matched rules.

FEATURES

ALTERNATIVES

A set of interrelated detection rules for improving detection and hunting visibility and context

PFQ v6.2 is a functional framework for Linux optimized for efficient packet capture/transmission and in-kernel processing.

Makes output from the tcpdump program easier to read and parse.

High-speed packet capture library with user-level network socket.

A repository of pre-defined detections for security threats and abnormal behaviors in Falco.

An HTTP proxy, monitor, and reverse proxy tool for viewing HTTP and SSL/HTTPS traffic.

A TCP-based traceroute implementation that bypasses firewall filters to trace the path to a destination.

Pure Python implementation of Microsoft RDP protocol with various tools and support for different security layers.