flare-fakenet-ng
Traffic analyzer
A tool for intercepting and redirecting network traffic to analyze malware functionality
FakeNet-NG - Next Generation Dynamic Network Analysis Tool
2k stars
113 watching
361 forks
Language: Python
last commit: 17 days ago
Linked from 1 awesome list
fakenet-nggsoc-2024malware-analysismandiant-flaretraffic-redirection
rshipp/awesome-malware-analysisRelated projects:
| Repository | Description | Stars |
|---|---|---|
| mandiant/capa | An executable file analysis tool that identifies capabilities and potential malicious behaviors. | 4,873 |
 austin-taylor/flare | Analytical framework for network traffic and behavioral analytics using Python | 449 |
 tomchop/malcom | Analyzes network traffic to detect malware communication and behavior | 1,155 |
 ch3k1/squidmagic | Analyzes web-based network traffic to detect malicious command and control servers using Squid proxy server and Spamhaus | 78 |
 nesfit/netfoxdetective | A network forensic analysis tool that extracts content from communication protocols and visualizes it in various ways | 38 |
 hatriot/zarp | A network attack tool designed to manage and analyze local networks | 1,446 |
 srinivas11789/pcapxray | A tool to visualize network traffic and extract information from packet captures | 1,698 |
 xplico/xplico | Analyzes network traffic data from captured packets to extract and decode specific protocols and information. | 182 |
 activecm/rita | A framework for detecting malicious communication patterns in network traffic by analyzing Zeek logs. | 194 |
 hgascon/acapulco | A tool for analyzing and visualizing network traffic data using event clustering and parallel coordinates graphs. | 10 |
 cisagov/malcolm | A network traffic analysis tool suite that accepts various data formats and provides visualization and incident response capabilities. | 1,962 |
 eremit4/cs-discovery | Detects malicious servers in network traffic by analyzing encoded byte patterns | 20 |
 antirez/hping | A tool to send custom TCP/IP packets and display target replies | 1,444 |
 dhoelzer/showmethepackets | Tools and resources for network monitoring and analysis used in the SANS SEC503 course | 209 |
| mandiant/goresym | A tool for extracting metadata from compiled Go binaries | 609 |