Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

A platform built for easy-to-use automated network traffic analysis

The Attacker IP Prioritizer(AIP) dynamically generates resource-friendly IPv4 blocklists from Zeek network flows.

A Python-based network traffic analyzer for PCAP files, providing insights into protocol distribution, IP communications, and potential port scanning activities.

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

The model leverages the strengths of both CNNs and BiLSTM networks to effectively capture spatial and temporal patterns in network traffic data. We trained and evaluated the model using a comprehensive dataset of cyber attacks. The model achieved a high accuracy of 99%.

Notes for technologies useful in applying ml to the unsw-nb15 dataset (Draft)

Keysight NAS (IXIA) Cloud Demo Examples

OTARIS traffic analyzer

BlackVenom is an ethical ARP and DNS spoofing tool 🛡️ designed for cybersecurity professionals, enabling the interception and logging of network traffic 📄 to identify vulnerabilities. It facilitates effective network analysis 🔍 while ensuring stealth and compliance with ethical hacking practices ⚖️.

Curriculum developed to assist in CyberSkyline challenges

This repository provides comprehensive guides, configurations, rules, and practical examples for Snort, the open-source intrusion detection system (IDS). Ideal for cybersecurity professionals and enthusiasts looking to enhance their network security skills.

This project is a live network monitoring dashboard that leverages tree-based machine learning algorithms to detect intrusions in real-time. The system uses Flask and Socket.IO for real-time data updates, and Chart.js for data visualization. The dashboard provides various charts to visualize network data and sends notifications for suspicious activ

A comprehensive networking framework designed primarily for high-performance processing of raw packets. Implements most modern protocols (specifically TCP/IP) and further networking software. In addition, the project contains a suite of networking tools built entirely on top of the framework

A real-time traffic monitoring tool that detects and displays network traffic volume per IP address to identify potential DDoS attacks.

The "Network Packet Analyzer" project is a network packet analysis tool, helping to analyze and display information about data packets transmitted over the network.

Visualisateur graphique de trafic reseau sous forme de graphe de flux