ait-aecid / kyoushi-environment
Scripts to deploy virtual testbed for log data analysis and anomaly detection.
☆19Updated last year
Related projects ⓘ
Alternatives and complementary repositories for kyoushi-environment
- A method for grouping, clustering, and merging semi-structured alerts☆19Updated last week
- [TDSC 2021] IntruSion alert-driven Attack Graph Extractor. https://ieeexplore.ieee.org/document/9557854☆33Updated 4 months ago
- Scripts to generate and analyze the AIT alert data set (AIT-ADS)☆17Updated last month
- Original implementation and resources of DeepCASE as in the S&P '22 paper☆91Updated last year
- This program allow you to extract some features from pcap files.☆38Updated last year
- Machine learning on knowledge graphs for context-aware security monitoring (data and model)☆16Updated 2 years ago
- Anomaly Detection in the Open World: Normality Shift Detection, Explanation, and Adaptation (NDSS'23).☆62Updated last year
- Simple implementation of scientific paper 'GAC: Graph-Based Alert Correlation for the Detection of Distributed Multi-Step Attacks'☆19Updated 5 years ago
- A framework for the Analysis of Intrusion Detection Alerts☆16Updated 3 years ago
- Enhancing Robustness Against Adversarial Examples in Network Intrusion Detection Systems☆16Updated 3 years ago
- Datasets used in the StreamSpot experiments☆51Updated 8 years ago
- Code for our USENIX Security 2021 paper -- CADE: Detecting and Explaining Concept Drift Samples for Security Applications☆129Updated last year
- Extracting Attack Behavior from Threat Reports☆75Updated last year
- Adversarial machine learning and explainable machine learning for cyber security☆11Updated 2 years ago
- Apply modern, deep learning techniques for anomaly detection to identify network intrusions.☆35Updated last year
- This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited…☆79Updated this week
- FARE: Enabling Fine-grained Attack Categorization under Low-quality Labeled Data☆24Updated 2 years ago
- SecureBERT is a domain-specific language model to represent cybersecurity textual data.☆71Updated 4 months ago
- AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports☆137Updated last year
- A Zeek script to generate features based on timing, volume and metadata for traffic classification.☆53Updated 4 years ago
- ☆42Updated 3 years ago
- APT-KGL: An Intelligent APT Detection System Based on Threat Knowledge and Heterogeneous Provenance Graph Learning☆59Updated 2 years ago
- Payload-Byte is a tool for extracting and labeling packet capture (Pcap) files of modern network intrusion detection datasets.☆27Updated 4 months ago
- Coburg Intrusion Detection Data Sets☆48Updated 7 years ago
- ATLAS: A Sequence-based Learning Approach for Attack Investigation☆142Updated 2 years ago
- Log2vec: A Heterogeneous Graph Embedding Based Approach for Detecting Cyber Threats within Enterprise☆23Updated 3 years ago
- ☆73Updated last year
- Interpreting and Improving Deep Learning-based Anomaly Detection in Security Applications (CCS'21)☆71Updated 2 years ago
- Detection of malicious domain names using machine learning and deep learning models☆16Updated 6 years ago
- SSH traffic analysis☆23Updated 5 years ago