Alternatives and similar repositories for DGA

Users that are interested in DGA are comparing it to the libraries listed below

• endgameinc / dga_predict
  ☆269Updated 7 years ago
• andrewaeva / DGA
  The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…
  ☆221Updated 8 years ago
• SpiderLabs / IOCs-IDPS
  This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)
  ☆107Updated 4 years ago
• baronpan / SysmonHunter
  An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
  ☆203Updated 3 years ago
• lion-gu / ioc-explorer
  Explore Indicators of Compromise Automatically
  ☆97Updated 5 years ago
• pchaigno / dga-collection
  A collection of known Domain Generation Algorithms
  ☆67Updated 9 years ago
• jasonish / py-idstools
  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
  ☆282Updated 3 months ago
• phunterlau / dga_classifier
  Sample DGA classifier
  ☆128Updated 10 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆69Updated 7 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆105Updated 4 years ago
• mannirulz / BotDAD
  Anomaly detection based on DNS traffic analysis
  ☆54Updated 5 years ago
• Cherishao / APT-Sample
  Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.
  ☆173Updated last year
• BoneLee / dns_tunnel_dectect_with_CNN
  dns tunnel dectect with CNN
  ☆63Updated 5 years ago
• baderj / domain_generation_algorithms
  Some results of my DGA reversing efforts
  ☆677Updated last month
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆103Updated 5 years ago
• secureworks / dalton
  Suricata, Snort and Zeek IDS rule and pcap testing system
  ☆501Updated last month
• Ptr32Void / OSTrICa
  ☆306Updated 8 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆79Updated 7 years ago
• plusvic / yara
  The pattern matching swiss knife
  ☆140Updated 5 years ago
• secdr / sec-ml
  security machine learning
  ☆72Updated 8 years ago
• Cisco-Talos / Re2Pcap
  ☆58Updated last year
• pandazheng / Threat-Intelligence-Analyst
  威胁情报，恶意样本分析，开源Malware代码收集
  ☆346Updated 5 years ago
• JustinAzoff / zeek-pdns
  Passive DNS collection using Zeek
  ☆181Updated 2 years ago
• ohmyadd / wetland
  A high interaction SSH honeypot
  ☆124Updated 2 years ago
• diogo-fernan / malsub
  A Python RESTful API framework for online malware analysis and threat intelligence services.
  ☆367Updated last year
• likekabin / CyberMonitor-APT_CyberCriminal_Campagin_Collections
  ☆33Updated 7 years ago
• brakmic / Sinkholes
  Malware Sinkhole List in various formats
  ☆102Updated 3 years ago
• secureworks / flowsynth
  a network packet capture compiler
  ☆202Updated 3 years ago
• blacktop / docker-cuckoo
  Cuckoo Sandbox Dockerfile
  ☆331Updated 5 years ago
• 360netlab / flint
  The python client of passivedns.cn
  ☆97Updated 6 years ago