flare-fakenet-ng
Traffic analyzer
A tool for intercepting and redirecting network traffic to analyze malware functionality
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
2k stars
113 watching
361 forks
Language: Python
last commit: 18 days ago
Linked from 1 awesome list
fakenet-nggsoc-2024malware-analysismandiant-flaretraffic-redirection
Related projects:
Repository | Description | Stars |
---|---|---|
mandiant/capa | An executable file analysis tool that identifies capabilities and potential malicious behaviors. | 4,885 |
austin-taylor/flare | An analytical framework for identifying malicious behavior in networks | 449 |
tomchop/malcom | Analyzes network traffic to detect malware communication and behavior | 1,155 |
ch3k1/squidmagic | Analyzes web-based network traffic to detect malicious command and control servers using Squid proxy server and Spamhaus | 78 |
nesfit/netfoxdetective | A network forensic analysis tool that extracts content from communication protocols and visualizes it in various ways | 38 |
hatriot/zarp | A network attack tool designed to manage and analyze local networks | 1,446 |
srinivas11789/pcapxray | A tool to visualize network traffic and extract information from packet captures | 1,698 |
xplico/xplico | Analyzes network traffic data from captured packets to extract and decode specific protocols and information. | 182 |
activecm/rita | A framework for detecting malicious communication patterns in network traffic by analyzing Zeek logs. | 199 |
hgascon/acapulco | A tool for analyzing and visualizing network traffic data using event clustering and parallel coordinates graphs. | 10 |
cisagov/malcolm | A network traffic analysis tool suite that accepts various data formats and provides visualization and incident response capabilities. | 1,962 |
eremit4/cs-discovery | Detects malicious servers in network traffic by analyzing encoded byte patterns | 20 |
antirez/hping | A tool for sending custom TCP/IP packets and displaying target replies | 1,446 |
dhoelzer/showmethepackets | Tools and resources for network monitoring and analysis used in the SANS SEC503 course | 209 |
mandiant/goresym | A tool for extracting metadata from compiled Go binaries | 609 |