The forensic imager contained in this package, guymager, was designed to support different image file formats, to be most user-friendly and to run fast.
Read more
The forensic imager contained in this package, guymager, was designed to support different image file formats, to be most user-friendly and to run fast.
Read moreSuricata is a threat detection engine, combining intrusion detection, intrusion prevention, network security monitoring and PCAP processing.
Read moreSnort is an open source network intrusion prevention and detection system utilizing a rule-driven language.
Read moreZeek (formerly known as Bro) is a powerful free and open source framework for network traffic analysis and security monitoring.
Read moreMaltrail is a malicious traffic detection system, utilizing publicly available (black)lists.
Read more
Hostsblock is a POSIX-compatible script for Linux designed to take advantage of the HOSTS file to block malware.
Read more
libredefender is an antivirus program. Scanning is implemented with libclamav.
Read more
Unhide is a forensic tool to find hidden processes and TCP/UDP ports by rootkits / LKMs or by another hiding technique.
Read more
phpMussel is a PHP script designed to detect trojans, viruses, malware and other threats within files.
Read more
Linux Malware Detect (LMD) is a malware scanner that is designed around the threats faced in shared hosted environments.
Read more
ClamTk is a frontend for ClamAV (Clam Antivirus).
Read more
YARA is a free and open source tool aimed at (but not limited to) helping malware researchers to identify and classify malware samples.
Read more
Clam AntiVirus is a free and open source anti-virus toolkit, designed especially for e-mail scanning on mail gateways.
Read more
Wireshark is a network packet analyzer. A network packet analyzer captures network packets and tries to display that packet data as detailed as possible.
Read more
netsniff-ng is a performant network analyzer and networking toolkit. It’s described as the Swiss army knife for network packets.
Read more
darkstat is a network statistics gatherer. It captures network traffic on a specified interface, calculates statistics about usage, and serves reports over HTTP.
Read more
dsniff is a collection of tools for network auditing and penetration testing. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor.
Read more
ngrep strives to provide most of GNU grep’s common features, applying them to the network layer. ngrep is a pcap-aware tool.
Read more
tcpdump is a common computer network debugging tool that runs under the command line. Intercept and display TCP/IP and other packets.
Read more
sniffIt is a Distributed Sniffer System. Capture network traffic from an unique machine using a graphical client application.
Read more