Category: Forensics

Real Intelligence Threat Analytics

RITA v1.1.0: Real Intelligence Threat Analytics

Real Intelligence Threat Analytics (RITA) is an open source framework for network traffic analysis. The framework ingests Bro Logs, and currently supports the following analysis features: Beaconing Detection: Search for signs of beaconing behavior in...

dexter

dexter: Forensics acquisition framework

Dexter Your friendly forensics expert. Dexter is a forensics acquisition framework designed to be extensible and secure. Dexter runs as an agent backed by S3. Investigators use Dexter on the command line to issue...

autopsy

Autopsy 4.9.0 release: Open source forensics tool

Autopsy is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on...

Cowrie

cowrie v1.5.1 releases: Cowrie SSH/Telnet Honeypot

What is Cowrie Cowrie is a medium interaction SSH and Telnet honeypot designed to log brute force attacks and the shell interaction performed by the attacker. Cowrie is developed by Michel Oosterhof. Features Some interesting...

sensu

Sensu 1.6 release, open source monitoring framework

Sensu A simple, malleable, and scalable framework for composing the monitoring system you need. It is offered in two flavours: Sensu Core – this open source project Sensu Enterprise – a full-featured commercial implementation, built...

Cortex

Cortex 2.1.2 released: Powerful Observable Analysis Engine

Cortex tries to solve a common problem frequently encountered by SOCs, CSIRTs and security researchers in the course of threat intelligence, digital forensics, and incident response: how to analyze observables they have collected, at scale, by querying a single...