exp0se / dga_detector
DGA Domains detection
☆65Updated 6 years ago
Alternatives and similar repositories for dga_detector:
Users that are interested in dga_detector are comparing it to the libraries listed below
- A collection of known Domain Generation Algorithms☆66Updated 8 years ago
- Extract files from network traffic with Zeek.☆101Updated 5 years ago
- Various Bro scripts☆96Updated 8 years ago
- IOC (Indicator of Compromise) Extractor: a program to help extract IOCs from text files.☆135Updated 9 years ago
- ☆269Updated 6 years ago
- This repository will hold PCAP IOC data related with known malware samples (owner: Bryant Smith)☆100Updated 3 years ago
- Sweet, sweet, secrepo.com html.☆131Updated 3 years ago
- CIF v3 -- the fastest way to consume threat intelligence☆183Updated last year
- Detect cryptocurrency mining traffic with Zeek.☆46Updated 4 years ago
- A series of labs that will help users apply various data science techniques to security related data.☆132Updated 9 years ago
- Suspicious DGA from PDNS and Sandbox.☆183Updated 2 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆149Updated 10 months ago
- A web-based tool to assist the work of the intuitive threat analysts.☆113Updated 6 years ago
- Cyber Threat Intelligence Feeds☆95Updated 8 years ago
- ☆75Updated 3 years ago
- The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…☆219Updated 7 years ago
- Bro scripts written by CrowdStrike Services☆146Updated 3 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- Malware Sinkhole List in various formats☆103Updated 2 years ago
- DGA Domain Detection using Bigram Frequency Analysis☆54Updated 7 years ago
- A tool to generate Snort rules based on public IP reputation data☆56Updated 11 years ago
- This repository contains all public indicators identified by 401trg during the course of our investigations. It also includes relevant ya…☆121Updated 3 years ago
- Misc. Bro scripts☆63Updated 7 years ago
- Mapping NSM rules to MITRE ATT&CK☆70Updated 4 years ago
- Malware/IOC ingestion and processing engine☆104Updated 6 years ago
- Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing☆175Updated 4 years ago
- Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect int…☆148Updated 10 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 8 years ago
- Gather and compile open source threat intelligence feeds.☆39Updated 3 years ago