Alternatives and similar repositories for Cyber-Attack-Attribution-with-Machine-Learning

Users that are interested in Cyber-Attack-Attribution-with-Machine-Learning are comparing it to the libraries listed below

• Kart1keya / Hachi
  This tool maps a file's behavior on MITRE ATT&CK matrix.
  ☆59Updated 5 years ago
• CIRCL / factual-rules-generator
  Factual-rules-generator is an open source project which aims to generate YARA rules about installed software from a machine.
  ☆76Updated 3 years ago
• dfir-ronin / APT-OpenIOC-Detection-Rules
  This repository contains OpenIOC rules to aid in hunting for indicators of compromise and TTPs focused on Advanced Persistent Threat grou…
  ☆25Updated last year
• CrowdStrike / embersim-databank
  Code for the paper "EMBERSim: A Large-Scale Databank for Boosting Similarity Search in Malware Analysis"
  ☆29Updated last year
• aptresearch / datasets
  ☆24Updated 4 years ago
• aiforsec22 / IEEEEuroSP23
  ☆25Updated last year
• stratosphereips / shelLM
  Code for shelLM tool
  ☆55Updated 5 months ago
• threatrack / cti_report_collection
  Repository collecting and automagically processing public threat intelligence reports.
  ☆18Updated 5 years ago
• CAPESandbox / community
  Community modules for CAPE Sandbox
  ☆100Updated last week
• vmapps / attack2neo
  Import Mitre Att&ck into Neo4j database
  ☆36Updated 2 years ago
• ahlashkari / VolMemLyzer
  VolMemLyzer (Volatility Memory Analyzer) is a feature extraction module which use Volatility plugins to extract memory features to genera…
  ☆34Updated last year
• cyber-research / APTAttribution
  Code for Benchmarking two ML Approaches performing Authorship Attribution
  ☆37Updated 3 years ago
• avast / avast-ctu-cape-dataset
  ☆36Updated last year
• center-for-threat-informed-defense / technique-inference-engine
  TIE is a machine learning model for inferring associated MITRE ATT&CK techniques from previously observed techniques.
  ☆54Updated 2 months ago
• mitre / atomic
  A MITRE Caldera plugin
  ☆43Updated 7 months ago
• cyware-labs / Threat-Response-Docker
  ☆43Updated 2 years ago
• cmu-sei / CDAS
  This program generates cyber attack scenarios for use in cyber training exercises, red team planning, blue team planning, automated attac…
  ☆27Updated 4 years ago
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆48Updated 5 years ago
• FutureComputing4AI / ClarAVy
  ☆34Updated 2 weeks ago
• BushidoUK / Exploring-APT-campaigns
  Further investigation in to APT campaigns disclosed by private security firms and security agencies
  ☆86Updated 3 years ago
• jstrosch / subparse
  Modular malware analysis artifact collection and correlation framework
  ☆53Updated last year
• SimoneCagol / sigma-rules-crawler
  ☆33Updated this week
• stratosphereips / yara-rules
  Repository of Yara rules created by the Stratosphere team
  ☆26Updated 3 years ago
• fkie-cad / amides
  An Adaptive Misuse Detection System
  ☆42Updated 7 months ago
• format81 / GenAI-STIX2.1-Generator
  GenAI-STIX2.1-Generator is a tool that leverages Azure OpenAI capabilities to transform threat intelligence reports from unstructured web…
  ☆16Updated 3 months ago
• zRapha / FAME
  Framework for Adversarial Malware Evaluation.
  ☆34Updated 3 months ago
• Mhackiori / STIXnet
  A Novel and Modular Solution for Extracting All STIX Objects in CTI Reports
  ☆24Updated last year
• SCILabsMX / yaraZeekAlert
  This script scans the files extracted by Zeek with YARA rules located on the rules folder on a Linux based Zeek sensor, if there is a mat…
  ☆62Updated last year
• jeFF0Falltrades / YARA-Signatures
  A collection of my public YARA signatures for various malware families
  ☆29Updated 9 months ago
• jonny-jhnson / Detecting-Process-Injection-Techniques
  This is a repository that is meant to hold detections for various process injection techniques.
  ☆34Updated 5 years ago