1computerguy / tls-mal-detectLinks
Using machine learning to detect malware in encrypted TLS traffic metadata
☆17Updated 4 years ago
Alternatives and similar repositories for tls-mal-detect
Users that are interested in tls-mal-detect are comparing it to the libraries listed below
Sorting:
- A completely automated anomaly detector Zeek network flows files (conn.log).☆80Updated 10 months ago
- ☆110Updated 4 years ago
- ☆55Updated 6 years ago
- A Zeek script to generate features based on timing, volume and metadata for traffic classification.☆56Updated 4 years ago
- ICS Cybersecurity PCAP respository☆53Updated 6 years ago
- VolMemLyzer (Volatility Memory Analyzer) is a feature extraction module which use Volatility plugins to extract memory features to genera…☆33Updated last year
- nPrint provides a generalizable data representation for network packets that works directly with machine learning techniques☆111Updated 3 years ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆79Updated 7 years ago
- Pcap-splitter allows you to split a pcap file into subsets of pcap files based on sessions, flows, ip addresses, number of bytes, number …☆65Updated 5 years ago
- A Python application to filter and transfer Zeek logs to Elastic/OpenSearch+Humio. This app can also output pure JSON logs to stdout for…☆35Updated 2 years ago
- A collection of resources for security data☆41Updated 7 years ago
- Official ID2T repository. ID2T creates labeled IT network datasets that contain user defined synthetic attacks.☆63Updated last year
- ☆23Updated 3 years ago
- DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic☆42Updated 10 months ago
- ☆25Updated last year
- pcapML standardizes network traffic analysis datasets by directly encoding metadata information into raw traffic captures☆25Updated 2 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- A Zeek Network Security Monitor tutorial that will cover the basics of creating a Zeek instance on your network in addition to all of the…☆62Updated 2 years ago
- Collection of Snort 2/3 rules.☆36Updated 6 years ago
- A python app to predict Att&ck tactics and techniques from cyber threat reports☆122Updated last year
- Mapping NSM rules to MITRE ATT&CK☆71Updated 4 years ago
- This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…☆62Updated last year
- ☆48Updated last year
- Zeek Training Materials/Products☆37Updated last week
- Place for resources used during the Mordor Detection hackathon event featuring APT29 ATT&CK evals datasets☆137Updated 4 years ago
- PcapMonkey will provide an easy way to analyze pcap using the latest version of Suricata and Zeek.☆153Updated 2 months ago
- Zeek scripts that provide an alternative log file logging TLS/SSL traffic☆10Updated 4 years ago
- Tools to interact with APTnotes reporting/index.☆103Updated 4 years ago
- Threat Detection & Anomaly Detection rules for popular open-source components☆52Updated 2 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago