Active Countermeasures

icon indicating a website link https://www.activecountermeasures.com icon indicating an email [email protected]

Results 12 repositories owned by Active Countermeasures
trafficstars

passer

236
Stars
49
Forks
Watchers

Passive service locator, a python sniffer that identifies servers, clients, names and much more

verified publisher icon activecm

rita

2.5k
Stars
359
Forks
Watchers

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

verified publisher icon activecm

BeaKer

275
Stars
42
Forks
Watchers

Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana

verified publisher icon activecm

bro-install

18
Stars
7
Forks
Watchers

An Installation Script for Bro IDS on Debian Based Systems

verified publisher icon activecm

docker-zeek

46
Stars
17
Forks
Watchers

Run zeek with zeekctl in docker

verified publisher icon activecm

espy

63
Stars
17
Forks
Watchers

Endpoint detection for remote hosts for consumption by RITA and Elasticsearch

verified publisher icon activecm

pcap-stats

24
Stars
3
Forks
Watchers

Learn about a network from a pcap file or reading from an interface

verified publisher icon activecm

threat-hunting-labs

71
Stars
17
Forks
Watchers

Collection of walkthroughs on various threat hunting techniques

verified publisher icon activecm

threat-tools

149
Stars
26
Forks
Watchers

Tools for simulating threats

verified publisher icon activecm

devprof

16
Stars
2
Forks
Watchers

Device profile: Define acceptable amounts of traffic for your devices and see a report of outliers.

verified publisher icon activecm