network-triage

Here are 3 public repositories matching this topic...

Compcode1 / beaconing-detection

Detecting covert HTTPS beaconing from an internal host using network triage methods including firewall alerts, NetFlow analysis, and domain reputation tools.

cybersecurity beaconing network-triage incident-reponse netflow-analysis

Updated May 1, 2025
Jupyter Notebook

Compcode1 / ioc14-mac-flooding

Star

This is a MAC flooding attack scenario: the attacker poisons the switch's internal memory by overwhelming it with fake MAC address mappings. As the switch fails open into broadcast mode, the attacker’s NIC (network interface card) now receives traffic not meant for it.

forensic-analysis mac-flooding network-triage layer2-security host-investigation

Updated May 19, 2025
Jupyter Notebook

Compcode1 / ios8-dns-beaconing

Star

his case study investigates a covert beaconing pattern in which a compromised host periodically sent outbound DNS queries to Google's public resolver (8.8.8.8) at 30-minute intervals without receiving responses.

network-triage ioc-case-study dns-beaconing svchost-analysis cybersecurity-forensics

Updated May 12, 2025
Jupyter Notebook

Improve this page

Add a description, image, and links to the network-triage topic page so that developers can more easily learn about it.

Curate this topic

Add this topic to your repo

To associate your repository with the network-triage topic, visit your repo's landing page and select "manage topics."

Learn more

Provide feedback

Saved searches

Use saved searches to filter your results more quickly