scripts

My collection of scripts that I've written over the years as a SANS Internet Storm Center Handler

Requirements

pngrep.pl currently requires an old version of NetPacket (v0.43.2), I need to fix it to work with the current version (and will accept pull requests that fix it :-) ).
sigs.py requires pysha3 (can be installed with pip) or Python <= 3.6

mac-robber.py has been moved to https://github.com/att/docker-forensics/blob/master/mac-robber.py
pngrep.pl is no longer maintained now that there is a version of ngrep that can do IPv6 on github (see https://github.com/jpr5/ngrep)

Name		Name	Last commit message	Last commit date
Latest commit History 83 Commits
LICENSE.md		LICENSE.md
README.md		README.md
accttime.pl		accttime.pl
dumpdns.pl		dumpdns.pl
extract-http.pl		extract-http.pl
icmpxtract.pl		icmpxtract.pl
immutable.py		immutable.py
ip-as-geo.pl		ip-as-geo.pl
le-hex-to-ip.py		le-hex-to-ip.py
linux-pkgs.sh		linux-pkgs.sh
plaso-datefix.py		plaso-datefix.py
pngrep.pl		pngrep.pl
sigs.pl		sigs.pl
sigs.py		sigs.py
tcp-honeypot.service		tcp-honeypot.service
tln_parse.py		tln_parse.py