SANS Institute - Moloch: Difference between revisions

From GCA ACT
Jump to navigationJump to search
(Created via script)
 
(No difference)

Latest revision as of 09:46, 27 October 2023

Description


Moloch is an open source, large scale, full packet capturing, indexing, and analyzing tool. It is designed to easily handle multiple gigabits per second of traffic, index the full packet data, and provide search capabilities. Moloch is used extensively by many organizations, including SANS Institute, for network forensics and incident response purposes.

More Information


https://molo.ch/

Retrieved from ‘https://act.gcai.dev/index.php?title=SANS_Institute_-_Moloch&oldid=6455