chopshop icon indicating copy to clipboard operation
chopshop copied to clipboard

Published 20 hours ago verified publisher icon CrowdStrike

Metadata

Mitre chopshop network decoder framework

CrowdStrike ChopShop Modules

ChopShop is a MITRE developed framework to aid analysts in the creation and execution of pynids based decoders and detectors of APT tradecraft.

Note that ChopShop is still in perpetual beta and is dependent on libnids/pynids for the majority of its underlying functionality.

Documentation for ChopShop can be found on ReadTheDocs.

Description

This repository contains ChopShop Modules written by CrowdStrike. The documentation for each module is contained module documentation.

Module Installation

  • Grab MITRE's ChopShop network decoder framework from https://github.com/MITRECND/chopshop
  • Chopshop's HTTP module requires Python library htpy, you can grab it on MITRE's Github https://github.com/MITRECND/htpy
  • Copy over the .py module file to chopshop/modules/ directory.

Bugs can be report to William Tan

Metadata

30
Stars
6
Forks
Watchers

Owner

verified publisher icon CrowdStrike

Metadata

Mitre chopshop network decoder framework

Back