Alternatives and similar repositories for awesome-DGA:

Users that are interested in awesome-DGA are comparing it to the libraries listed below

• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆53Updated 7 years ago
• 0xxon / zeek-tls-log-alternative
  Zeek scripts that provide an alternative log file logging TLS/SSL traffic
  ☆10Updated 3 years ago
• eyalmazuz / AttackAttributionDataset
  ☆16Updated 5 years ago
• wisespace-io / nettfiske
  Detect Phishing fetching Certificate Transparency Logs
  ☆20Updated 4 years ago
• abzcoding / aptdetector
  Advanced Persistent Threat Detection Using Network Analysis
  ☆22Updated 5 years ago
• jheise / yarascanner
  Golang based web service to scan files with yara rules
  ☆27Updated 7 years ago
• Prelude-SIEM / prelude-correlator
  The official Prelude-Correlator GitHub mirror of https://www.prelude-siem.org/projects/prelude-correlator/repository
  ☆10Updated 3 years ago
• zmap / pybulkwhois
  Python framework for manipulating bulk WHOIS data from RIRs
  ☆20Updated 2 years ago
• matthoffman / degas
  DGA-generated domain detection using deep learning models
  ☆23Updated 2 years ago
• Vi45en / Pesidious
  ☆13Updated 2 years ago
• certtools / tag2domain
  A mapping project between tags (annotations, labels) and domain names
  ☆11Updated 9 months ago
• nccgroup / yaml2yara
  Generate bulk YARA rules from YAML input
  ☆22Updated 4 years ago
• CyFI-Lab-Public / Forecast
  Forecasting Malware Capabilities From Cyber Attack Memory Images
  ☆31Updated 2 years ago
• inetrg / spoki
  Artifacts of the USENIX Security 2022 paper "Spoki: Unveiling a New Wave of Scanners through a Reactive Network Telescope"
  ☆17Updated last month
• horia141 / sdhash
  Python library for image hashing and deduplication
  ☆11Updated 8 years ago
• 3c7 / aptmap
  A map displaying threat actors from the misp-galaxy
  ☆32Updated 2 years ago
• team-cymru / iocs
  We publish indicators of compromise related to our stories here. See https://blog.team-cymru.com/ for more information.
  ☆9Updated 3 years ago
• zeek / spicy-analyzers
  Growing collection of Spicy-based protocol and file analyzers for Zeek
  ☆31Updated 4 months ago
• blacklight / Snort_AIPreproc
  A preprocessor module for Snort that uses ML algorithms for pruning, clustering and finding correlation between alerts
  ☆31Updated 5 years ago
• MISP / misp-privacy-aware-exchange
  A privacy-aware exchange module to securely and privately share your indicators
  ☆13Updated 7 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• kirit1193 / HIDPS
  A Python based Intrusion Detection and Prevention System. Uses Scapy to sniff packets at a specific interface, extract the remote IPs, sc…
  ☆9Updated 7 years ago
• roreagan / DeepDGA
  Implementation of 《DeepDGA: Adversarially-Tuned Domain Generation and Detection》 arXiv:1610.01969
  ☆25Updated 5 years ago
• COSSAS / sacti
  SACTI - Securely aggregate CTI sightings and report them on MISP
  ☆13Updated 2 years ago
• IQTLabs / pypi-scan
  Scan pypi for typosquatting
  ☆38Updated 2 years ago
• oherrala / xipology
  ☆18Updated last year
• wrayjustin / yaids
  YAIDS - Yara-Based IDS - Yara as an Intrusion Detection System / Yet Another Intrusion Detection System - An Intrusion Detection System (…
  ☆22Updated 2 years ago
• Egida-Kassandra / kassandra
  Analysis of HTTP traffic and detection of anomalous user behavior in allowed actions. UEBA system.
  ☆21Updated last year
• botherder / go-autoruns
  Collect autorun records from running system
  ☆59Updated 3 years ago