PUNCH Cyber Analytics Group

stoq

An open source framework for enterprise level automated analysis.

YaraGuardian

Django web interface for managing Yara rules

stoq-plugins-public

stoQ Public Plugins

Azure-Public

MAP_bro

messagepackKafkaSerde

A Kafka serializer/deserializer that works with MessagePack formated messages and deserializes them as JSON, then to a Byte array, which is intended for use within an Apache Druid database.

eileen

Slack and Bigtime timecard enforcement bot.

pcapOrgDumper

A simple utility to capture packets and write them to separate output files based on IP ranges.