blacklight / Snort_AIPreprocLinks
A preprocessor module for Snort that uses ML algorithms for pruning, clustering and finding correlation between alerts
☆32Updated 6 years ago
Alternatives and similar repositories for Snort_AIPreproc
Users that are interested in Snort_AIPreproc are comparing it to the libraries listed below
Sorting:
- A completely automated anomaly detector Zeek network flows files (conn.log).☆82Updated 6 months ago
- The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…☆223Updated 8 years ago
- Machine learning algorithms applied on log analysis to detect intrusions and suspicious activities.☆168Updated 3 months ago
- User and Entity Behavior Analytics by deep learning☆120Updated 4 years ago
- Repository of creating different example suricata data sets☆37Updated 7 years ago
- SSH traffic analysis☆23Updated 6 years ago
- System for network traffic analysis and anomaly detection.☆92Updated 6 months ago
- A Zeek script to generate features based on timing, volume and metadata for traffic classification.☆58Updated 5 years ago
- ICS Cybersecurity PCAP respository☆63Updated 7 years ago
- Machine Learning based Intrusion Detection Systems are difficult to evaluate due to a shortage of datasets representing accurately networ…☆105Updated 5 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- Download pcap files from http://www.malware-traffic-analysis.net/☆81Updated 8 years ago
- Intrusion Prevention System to dynamically add firewall rules to block malicious traffic detected by IDS system implemented on Software D…☆50Updated 8 years ago
- Detection of malicious domain names using machine learning and deep learning models☆16Updated 7 years ago
- Pcap-splitter allows you to split a pcap file into subsets of pcap files based on sessions, flows, ip addresses, number of bytes, number …☆67Updated 6 years ago
- ☆18Updated 6 years ago
- Machine-learning-based intrusion detection☆38Updated 7 years ago
- DGA Domains detection☆70Updated 7 years ago
- The project is to detect malware traffic in TLS flows using ML☆35Updated 5 years ago
- aka GENESIDS: Reads and parses rules using a "snort like" syntax and generates and sends packets that trigger events in signature based I…☆22Updated 7 years ago
- SCADA network attack datasets and process logs☆20Updated 8 years ago
- Using Python script instead of Nmap NSE script to detect ICS protocols[根据nmap nse脚本来编写工控协议识别的python脚本]☆33Updated 5 years ago
- idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)☆284Updated 7 months ago
- [Finished] My Bachelor thesis for the Bachelor Computer Science (2015-2016) at UHasselt: An Intrusion detection system using machine lear…☆41Updated 9 years ago
- This is a paper list about Machine Learning for IDSes☆91Updated last year
- An IDS implementation using machine learning☆39Updated 8 years ago
- Use PyShark and scapy to read fields from a pcap file and populate a CSV☆57Updated 5 years ago
- ☆16Updated 7 years ago
- A simple, cross-platform utility to classify packets into flows using only the essential 4-tuple.☆177Updated 5 months ago
- This is a malware analysis project which expecte to generate snort rule via malicious network traffic☆28Updated 2 years ago