{"payload":{"pageCount":2,"repositories":[{"type":"Public","name":"zeek-open-connections","owner":"activecm","isFork":false,"description":"","allTopics":[],"primaryLanguage":{"name":"Zeek","color":"#ccc"},"pullRequestCount":0,"issueCount":0,"starsCount":11,"forksCount":4,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-05-20T18:45:32.730Z"}},{"type":"Public","name":"shell-lib","owner":"activecm","isFork":false,"description":"Shell Scripts Used Across ActiveCM Projects","allTopics":[],"primaryLanguage":{"name":"Shell","color":"#89e051"},"pullRequestCount":1,"issueCount":4,"starsCount":5,"forksCount":2,"license":"BSD 3-Clause \"New\" or \"Revised\" License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-30T17:02:51.324Z"}},{"type":"Public","name":"safelist-tools","owner":"activecm","isFork":false,"description":"Tools for working with the safelist (formerly whitelist)","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":1,"issueCount":1,"starsCount":3,"forksCount":3,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-11T16:48:56.374Z"}},{"type":"Public","name":"pcap-stats","owner":"activecm","isFork":false,"description":"Learn about a network from a pcap file or reading from an interface","allTopics":["traffic-analysis","python3","scapy","python","pcap","network-analysis"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":24,"forksCount":3,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-06T18:35:40.825Z"}},{"type":"Public","name":"active-dns-lookup","owner":"activecm","isFork":false,"description":"Lookup hostnames via dns","allTopics":["python","dns","converter","python3","dns-client","zeek"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":0,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-04-06T04:09:31.270Z"}},{"type":"Public","name":"sniffer-template","owner":"activecm","isFork":false,"description":"Template for building a packet sniffer","allTopics":["python","template","python3","pcap-files","scapy","pcap-analyzer","pcap-library","pcap"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":14,"forksCount":4,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-03-25T23:21:27.610Z"}},{"type":"Public","name":"rita","owner":"activecm","isFork":false,"description":"Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.","allTopics":["security","analytics","logs","threat","beacon","scanning","beacon-sniffer","network-traffic","bro-ids","dga","blueteam","dns-tunneling","offensive-countermeasures","bhis","dns","analysis","rita"],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":10,"issueCount":79,"starsCount":2476,"forksCount":360,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-03-21T19:48:36.230Z"}},{"type":"Public","name":"zcutter","owner":"activecm","isFork":false,"description":"Extracts fields from zeek logs, compatible with zeek-cut","allTopics":["tsv","converter","json","python3","python-3","zeek","tsv-parser"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":16,"forksCount":2,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2024-02-13T19:37:43.545Z"}},{"type":"Public","name":"threat-tools","owner":"activecm","isFork":false,"description":"Tools for simulating threats","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":153,"forksCount":27,"license":"GNU General Public License v3.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,3,7,2,3,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-10-27T22:10:10.470Z"}},{"type":"Public","name":"save_json_stream","owner":"activecm","isFork":false,"description":"JSON TCP stream importer for RITA and AC-Hunter","allTopics":["python3","threat-hunting","python-3","zeek","rita","zeek-ids","bricata"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":1,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-09-08T18:31:42.489Z"}},{"type":"Public","name":"rita-bl","owner":"activecm","isFork":false,"description":" Real Intelligence Threat Analytics -- Blacklist Database","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":2,"starsCount":8,"forksCount":7,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-07-12T03:07:59.755Z"}},{"type":"Public","name":"espy","owner":"activecm","isFork":false,"description":"Endpoint detection for remote hosts for consumption by RITA and Elasticsearch","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":7,"starsCount":64,"forksCount":17,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-05-25T22:54:23.259Z"}},{"type":"Public","name":"BeaKer","owner":"activecm","isFork":false,"description":"Beacon Kibana Executable Report. Aggregates Sysmon Network Events With Elasticsearch and Kibana","allTopics":[],"primaryLanguage":{"name":"Shell","color":"#89e051"},"pullRequestCount":3,"issueCount":10,"starsCount":277,"forksCount":42,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-05-25T22:53:43.680Z"}},{"type":"Public","name":"ACH-Zeek","owner":"activecm","isFork":false,"description":"Zeek installer packaged with AC-Hunter","allTopics":[],"primaryLanguage":{"name":"Shell","color":"#89e051"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":0,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-05-25T22:53:00.300Z"}},{"type":"Public","name":"zeek-log-transport","owner":"activecm","isFork":false,"description":"This script ships logs from Zeek to AC-Hunter","allTopics":[],"primaryLanguage":{"name":"Shell","color":"#89e051"},"pullRequestCount":2,"issueCount":2,"starsCount":5,"forksCount":2,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-04-26T18:06:11.737Z"}},{"type":"Public","name":"smudge","owner":"activecm","isFork":false,"description":"Passive OS detection based on SYN packets without Transmitting any Data","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":5,"starsCount":40,"forksCount":4,"license":"GNU General Public License v3.0","participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-03-29T11:23:46.722Z"}},{"type":"Public","name":"docker-zeek","owner":"activecm","isFork":false,"description":"Run zeek with zeekctl in docker","allTopics":["docker","hacktoberfest","zeek","zeekctl"],"primaryLanguage":{"name":"Shell","color":"#89e051"},"pullRequestCount":2,"issueCount":6,"starsCount":41,"forksCount":16,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-02-28T21:40:59.508Z"}},{"type":"Public","name":"passer","owner":"activecm","isFork":false,"description":"Passive service locator, a python sniffer that identifies servers, clients, names and much more","allTopics":["python","linux","security","gplv3","sniffer","network-monitoring","macosx","python-2","packet-sniffer","hacktoberfest","packet-analyzer","pcap-analyzer","dns","pcap","packets","scapy","docker-command","passer","capturing-packets"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":2,"issueCount":0,"starsCount":237,"forksCount":49,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-02-16T04:35:14.892Z"}},{"type":"Public","name":"db-lib","owner":"activecm","isFork":false,"description":"Python database access library","allTopics":["python","sqlite","python3","sqlite3","sqlite3-database"],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":0,"license":"Do What The F*ck You Want To Public License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2023-01-03T16:45:56.068Z"}},{"type":"Public","name":"tcp-sig-json","owner":"activecm","isFork":false,"description":"Json file that holds TCP signatures for passive OS fingerprinting","allTopics":[],"primaryLanguage":{"name":"Python","color":"#3572A5"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":1,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2022-12-13T19:14:24.314Z"}},{"type":"Public","name":"zeek-agent-v2","owner":"activecm","isFork":true,"description":"Open source endpoint agent providing host information to Zeek. [v2]","allTopics":[],"primaryLanguage":{"name":"C++","color":"#f34b7d"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":5,"license":"Other","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2022-11-29T15:41:58.821Z"}},{"type":"Public","name":"zeekcfg","owner":"activecm","isFork":false,"description":"A node.cfg generator for zeekctl","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":3,"starsCount":6,"forksCount":4,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2022-11-11T12:50:55.999Z"}},{"type":"Public","name":"zeek-log-clean","owner":"activecm","isFork":false,"description":"Delete Zeek log files until disk usage is under a given threshold","allTopics":[],"primaryLanguage":{"name":"Shell","color":"#89e051"},"pullRequestCount":0,"issueCount":1,"starsCount":2,"forksCount":0,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2022-07-01T18:34:37.735Z"}},{"type":"Public","name":"bad-asn-list","owner":"activecm","isFork":true,"description":"An open source list of ASNs known to belong to cloud, managed hosting, and colo facilities.","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":0,"starsCount":1,"forksCount":102,"license":null,"participation":[0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0,0],"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2022-06-22T14:51:13.264Z"}},{"type":"Public","name":"pcap-resources","owner":"activecm","isFork":false,"description":"Support files and tools for pcap analysis and packet capture","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":0,"starsCount":2,"forksCount":2,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2022-03-01T15:18:34.232Z"}},{"type":"Public","name":"certificate-issues","owner":"activecm","isFork":false,"description":"Identifies certificate problems from Zeek ssl log files","allTopics":[],"primaryLanguage":{"name":"Shell","color":"#89e051"},"pullRequestCount":0,"issueCount":0,"starsCount":5,"forksCount":0,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2022-01-19T15:55:53.682Z"}},{"type":"Public","name":"mgosec","owner":"activecm","isFork":false,"description":"A Small Helper Library For Securing MongoDB Connections with Golang","allTopics":[],"primaryLanguage":{"name":"Go","color":"#00ADD8"},"pullRequestCount":0,"issueCount":1,"starsCount":4,"forksCount":0,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2021-12-01T20:30:20.828Z"}},{"type":"Public","name":"get-release","owner":"activecm","isFork":true,"description":"Github Action to get release information based on a tag","allTopics":[],"primaryLanguage":{"name":"JavaScript","color":"#f1e05a"},"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":43,"license":"MIT License","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2021-10-19T15:12:18.713Z"}},{"type":"Public","name":"packages","owner":"activecm","isFork":true,"description":"The default package source of the Zeek Package Manager","allTopics":[],"primaryLanguage":null,"pullRequestCount":0,"issueCount":0,"starsCount":0,"forksCount":109,"license":null,"participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2021-06-09T19:40:31.791Z"}},{"type":"Public","name":"threat-hunting-labs","owner":"activecm","isFork":false,"description":"Collection of walkthroughs on various threat hunting techniques","allTopics":[],"primaryLanguage":{"name":"HTML","color":"#e34c26"},"pullRequestCount":0,"issueCount":0,"starsCount":71,"forksCount":17,"license":"GNU General Public License v3.0","participation":null,"lastUpdated":{"hasBeenPushedTo":true,"timestamp":"2020-08-03T19:53:03.094Z"}}],"repositoryCount":43,"userInfo":null,"searchable":true,"definitions":[],"typeFilters":[{"id":"all","text":"All"},{"id":"public","text":"Public"},{"id":"source","text":"Sources"},{"id":"fork","text":"Forks"},{"id":"archived","text":"Archived"},{"id":"template","text":"Templates"}],"compactMode":false},"title":"Repositories"}