Skip to content

@mmguero-dev mmguero-dev

Change the repository type filter

All

    Repositories list

    60 repositories

    • Malcolm-Helm

      Public
      Go Template
      7000Updated Mar 5, 2026Mar 5, 2026

    • misc-debug

      Public
      miscellaneous stuff for debugging and collaboration
      Shell
      MIT License
      0000Updated Mar 4, 2026Mar 4, 2026

    • Malcolm

      Public
      Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
      securitypcapcybersecurity
      securitypcapcybersecuritysuricatainfosecnetwork-securityzeekopensearchnetwork-traffic-analysisnetworksecurity
      Python
      Other
      4073200Updated Mar 4, 2026Mar 4, 2026

    • Malcolm-Test

      Public
      Python
      Other
      2000Updated Mar 4, 2026Mar 4, 2026

    • CVE-2022-26937

      Public
      A Zeek package to detect CVE-2022-26937, a vulnerability in the Network Lock Manager (NLM) protocol in Windows NFS server.
      Shell
      BSD 3-Clause "New" or "Revised" License
      4000Updated Mar 3, 2026Mar 3, 2026

    • icsnpp-synchrophasor

      Public
      Zeek parser for Synchrophasor Data Transfer for Power Systems (C37.118)
      Zeek
      BSD 3-Clause "New" or "Revised" License
      9000Updated Mar 3, 2026Mar 3, 2026

    • icsnpp-roc-plus

      Public
      Zeek ROC Plus Parser - CISA ICSNPP
      Python
      BSD 3-Clause "New" or "Revised" License
      5000Updated Mar 3, 2026Mar 3, 2026

    • arkime

      Public
      Moloch is an open source, large scale, full packet capturing, indexing, and database system.
      C
      Apache License 2.0
      1.1k000Updated Mar 2, 2026Mar 2, 2026

    • bento

      Public
      Packer templates for building minimal Vagrant baseboxes for multiple platforms
      HCL
      Apache License 2.0
      1.1k000Updated Feb 2, 2026Feb 2, 2026

    • strelka

      Public
      Real-time, container-based file scanning at enterprise scale
      Python
      Other
      135100Updated Jan 22, 2026Jan 22, 2026

    • zeek-fuzzy-hashing

      Public
      Zeek plugin providing fuzzy hashing integration.
      C++
      BSD 3-Clause "New" or "Revised" License
      4000Updated Jan 19, 2026Jan 19, 2026

    • goStatic

      Public
      A really small static web server for Docker
      Go
      GNU General Public License v2.0
      79000Updated Jan 15, 2026Jan 15, 2026

    • json-streaming-logs

      Public
      Bro script package to create JSON formatted logs to stream into data analysis systems.
      Zeek
      BSD 2-Clause "Simplified" License
      11000Updated Dec 3, 2025Dec 3, 2025

    • Device-Type-Library-Import

      Public
      This library is intended to assist with importing device and module types into NetBox from the NetBox Community DeviceType-Library
      Python
      MIT License
      130000Updated Nov 11, 2025Nov 11, 2025

    • mandiant-ti-client

      Public
      Python
      Apache License 2.0
      6000Updated Nov 4, 2025Nov 4, 2025

    • packages

      Public
      The default package source of the Zeek Package Manager
      120000Updated Sep 29, 2025Sep 29, 2025

    • zeek-spicy-ospf

      Public
      A Zeek OSPF packet analyzer based on Spicy.
      Zeek
      BSD 3-Clause "New" or "Revised" License
      3000Updated Sep 9, 2025Sep 9, 2025

    • icsnpp-hart-ip

      Public
      Zeek HART-IP Parser - CISA ICSNPP
      Zeek
      Other
      10000Updated Sep 4, 2025Sep 4, 2025

    • icsnpp-c1222

      Public
      Zeek ANSI C12.22 Smart Meter Protocol Parser - CISA ICSNPP
      Python
      BSD 3-Clause "New" or "Revised" License
      4000Updated Sep 4, 2025Sep 4, 2025

    • icsnpp-modbus

      Public
      Zeek Modbus Extension Scripts - CISA ICSNPP
      Zeek
      BSD 3-Clause "New" or "Revised" License
      17000Updated Sep 4, 2025Sep 4, 2025

    • PartyLoud

      Public
      A simple tool to generate fake web browsing and mitigate tracking
      Shell
      GNU General Public License v3.0
      32000Updated Aug 19, 2025Aug 19, 2025

    • Malcolm-Test-Artifacts

      Public
      Artifacts (.pcap and .evtx files) for the Malcolm-Test project.
      Python
      Apache License 2.0
      0100Updated Aug 19, 2025Aug 19, 2025

    • netbox-initializers

      Public
      Plugin to load predefined data into Netbox
      Python
      Apache License 2.0
      15000Updated Aug 15, 2025Aug 15, 2025

    • python-humanfriendly

      Public
      Human friendly input/output for text interfaces using Python
      Python
      MIT License
      49000Updated Aug 13, 2025Aug 13, 2025

    • virter

      Public
      Virter is a command line tool for simple creation and cloning of virtual machines based on libvirt
      Go
      Apache License 2.0
      18000Updated Aug 12, 2025Aug 12, 2025

    • icsnpp-enip

      Public
      Zeek Ethernet/IP and CIP Parser - CISA ICSNPP
      Zeek
      BSD 3-Clause "New" or "Revised" License
      17000Updated Jul 30, 2025Jul 30, 2025

    • icsnpp-s7comm

      Public
      Zeek S7comm, S7comm-plus, and COTP Parser - CISA ICSNPP
      JavaScript
      BSD 3-Clause "New" or "Revised" License
      21000Updated Jul 29, 2025Jul 29, 2025

    • icsnpp-bacnet

      Public
      Zeek BACnet Parser - CISA ICSNPP
      JavaScript
      BSD 3-Clause "New" or "Revised" License
      17000Updated Jul 29, 2025Jul 29, 2025

    • icsnpp-ge-srtp

      Public
      Zeek GE SRTP Parser - CISA ICSNPP
      Zeek
      BSD 3-Clause "New" or "Revised" License
      6000Updated Jul 29, 2025Jul 29, 2025

    • icsnpp-genisys

      Public
      Industrial Control Systems Network Protocol Parsers (ICSNPP) - Genisys over TCP/IP
      Python
      BSD 3-Clause "New" or "Revised" License
      17000Updated Jul 18, 2025Jul 18, 2025