andrewaeva / DGA
The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research the possibility of applying machine learning and neural networks to detect and classify malicious domains.
☆219Updated 7 years ago
Alternatives and similar repositories for DGA:
Users that are interested in DGA are comparing it to the libraries listed below
- A collection of known Domain Generation Algorithms☆66Updated 9 years ago
- Suspicious DGA from PDNS and Sandbox.☆184Updated 2 years ago
- ☆269Updated 6 years ago
- DGA Domains detection☆66Updated 7 years ago
- DGA Domain Detection using Bigram Frequency Analysis☆54Updated 7 years ago
- Some results of my DGA reversing efforts☆661Updated 3 weeks ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆281Updated last year
- A series of labs that will help users apply various data science techniques to security related data.☆132Updated 9 years ago
- DGA Detection with ML and DL☆47Updated 5 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆101Updated 3 years ago
- Extract files from network traffic with Zeek.☆101Updated 5 years ago
- Cyber Threat Intelligence Feeds☆95Updated 8 years ago
- Sweet, sweet, secrepo.com html.☆131Updated 3 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆434Updated 2 years ago
- ☆168Updated 3 years ago
- Suricata, Snort and Zeek IDS rule and pcap testing system☆474Updated 3 months ago
- Zeek Analysis Tools (ZAT): Processing and analysis of Zeek network data with Pandas, scikit-learn, Kafka and Spark☆434Updated last year
- Labeled DNS exfiltration datasets and algorithms of DNS tunneling detection☆28Updated 2 years ago
- Sample DGA classifier☆124Updated 9 years ago
- a network packet capture compiler☆199Updated 2 years ago
- Detection of malware using dynamic behavior and Windows audit logs☆77Updated 9 years ago
- ☆307Updated 7 years ago
- A python app to predict Att&ck tactics and techniques from cyber threat reports☆120Updated last year
- Anomaly detection based on DNS traffic analysis☆52Updated 4 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆121Updated 4 years ago
- Suricata Extreme Performance Tuning guide☆208Updated 7 years ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆75Updated 7 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- FireEye Publicly Shared Indicators of Compromise (IOCs)☆464Updated 6 years ago
- CuckooML: Machine Learning for Cuckoo Sandbox☆146Updated 2 years ago