SweetSecurity Scripts to setup and install Bro IDS, Elasticsearch, Logstash, Kibana, and Critical Stack on any device. For more information on installation and how Sweet Security works, see the Wiki:...
Cyber Security GeoIP Attack Map Visualization This geoip attack map visualizer was developed to display network attacks on your organization in real time. The data server follows a syslog file,...
PowerForensics – PowerShell Digital Forensics Overview The purpose of PowerForensics is to provide an all inclusive framework for hard drive forensic analysis. PowerForensics currently supports NTFS and FAT file systems,...
WMIMon This command line tool allows to monitor WMI activity on Windows platform. If you don’t have Visual Studio to build it, you can download binaries from https://github.com/luctalpe/WMIMon/blob/master/Downloads/WMIMon_Binaries.zip Features It is...
A honeypot is a term used to describe a computer or network setup with the purpose of attracting computer hackers. These computers allow a system administrator or security expert to...
squidmagic is a tool designed to analyze a web-based network traffic to detect central command and control (C&C) servers and Malicious site, using Squid proxy server and Spamhaus. Installation Usage...
Forensics / Network PenTest / Sniffing & Spoofing / Wireless
by do son · Published July 8, 2017 · Last modified November 4, 2024
Chellam is a Wi-Fi IDS/Firewall for Windows. Chellam can detect Wi-Fi attacks, such as Honeypots, Evil Twins, Mis-association, and Hosted Network based backdoors etc., against a Windows-based client without the...
Web Shell Detector – is a php script that helps you find and identify php/cgi(perl)/asp/aspx shells. Web Shell Detector has a “web shells” signature database that helps to identify “web...
Bandicoot is a Python toolbox to analyze mobile phone metadata. It provides a complete, easy-to-use environment for data-scientist to analyze mobile phone metadata. With only a few lines of code,...
Android Hooker Hooker is an opensource project for dynamic analyses of Android applications. This project provides various tools and applications that can be use to automatically intercept and modify any...
AmandroidAmandroid is a static analysis framework for Android apps.The Android platform is immensely popular. However, malicious or vulnerable applications have been reported to cause several security problems. Currently, there is...
Forensics / Reverse Engineering
by do son · Published June 12, 2017 · Last modified November 4, 2024
Santoku Linux is a bootable Linux ISO which you can run as Live CD or install on a PC/VM. Santoku Linux is a Free and Open Source distribution and contains...
SSHHiPot High-interaction SSH honeypot (ok, it’s really a logging ssh proxy). Still more or less a work-in-progress. Feel free to go install this repository if you’d like to try it....
On May 2, Shodan and Recorded Future jointly launched the online malware C & C (command and control) server search engine – Malware Hunter , which was integrated on the...
The purpose of this post is to share some forensic tools for safe learning and to prohibit illegal use. 1, ChromeForensics A tool to perform automated forensic analysis of Chrome...
Support Securityonline.info site. Thanks!
