ait-aecid / kyoushi-environment
Scripts to deploy virtual testbed for log data analysis and anomaly detection.
☆21Updated last year
Alternatives and similar repositories for kyoushi-environment:
Users that are interested in kyoushi-environment are comparing it to the libraries listed below
- A method for grouping, clustering, and merging semi-structured alerts☆23Updated 3 months ago
- Scripts to generate and analyze the AIT alert data set (AIT-ADS)☆19Updated 4 months ago
- [TDSC 2021] IntruSion alert-driven Attack Graph Extractor. https://ieeexplore.ieee.org/document/9557854☆34Updated 7 months ago
- Network traffic classifier based on machine learning algorithms☆42Updated 2 years ago
- Machine learning on knowledge graphs for context-aware security monitoring (data and model)☆17Updated 2 years ago
- A framework for the Analysis of Intrusion Detection Alerts☆17Updated 3 years ago
- Original implementation and resources of DeepCASE as in the S&P '22 paper☆91Updated last year
- Anomaly Detection in the Open World: Normality Shift Detection, Explanation, and Adaptation (NDSS'23).☆64Updated last year
- A naive implementation of HERCULE, an attack story reconstruction system using community discovery on correlated log graph☆15Updated 7 years ago
- This program allow you to extract some features from pcap files.☆38Updated last year
- Coburg Intrusion Detection Data Sets☆49Updated 7 years ago
- Datasets used in the StreamSpot experiments☆56Updated 9 years ago
- Extracting Attack Behavior from Threat Reports☆76Updated last year
- Enhancing Robustness Against Adversarial Examples in Network Intrusion Detection Systems☆19Updated 4 years ago
- Cyber Security concepts extracted from unstructured threat intelligence reports using Named Entity Recognition☆97Updated last year
- Anomaly Detection on Time-Evolving Streams in Real-time. Detecting intrusions (DoS and DDoS attacks), frauds, fake rating anomalies.☆120Updated last year
- ☆43Updated 3 years ago
- SSH traffic analysis☆23Updated 5 years ago
- ☆75Updated last year
- Material from the DARPA Transparent Computing Program☆187Updated 4 years ago
- AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports☆148Updated last year
- Simple implementation of scientific paper 'GAC: Graph-Based Alert Correlation for the Detection of Distributed Multi-Step Attacks'☆19Updated 5 years ago
- This is a Python version of CICFlowmeter-V4.0 (formerly known as ISCXFlowMeter) - an Ethernet traffic Bi-flow generator and analyzer for …☆68Updated 3 years ago
- Code for our USENIX Security 2021 paper -- CADE: Detecting and Explaining Concept Drift Samples for Security Applications☆134Updated last year
- ATLAS: A Sequence-based Learning Approach for Attack Investigation☆149Updated 2 years ago
- ☆21Updated 3 years ago
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆92Updated 7 months ago
- This repository holds the dataset used to conduct experiments for the "Cyberthreat Detection from Twitter using Deep Neural Networks" acc…☆31Updated 4 years ago
- APT-KGL: An Intelligent APT Detection System Based on Threat Knowledge and Heterogeneous Provenance Graph Learning☆62Updated 2 years ago
- GraphChi's C++ version. Big Data - small machine.☆16Updated 4 years ago