DGA Domains detection
☆70Apr 10, 2018Updated 7 years ago
Alternatives and similar repositories for dga_detector
Users that are interested in dga_detector are comparing it to the libraries listed below
Sorting:
- ☆270Aug 25, 2018Updated 7 years ago
- The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…☆223Jul 31, 2017Updated 8 years ago
- A collection of known Domain Generation Algorithms☆67Apr 4, 2016Updated 9 years ago
- Exporting MISP event attributes to yara rules usable with Thor apt scanner☆24Mar 27, 2017Updated 8 years ago
- Suspicious DGA from PDNS and Sandbox.☆186Jul 12, 2022Updated 3 years ago
- Some results of my DGA reversing efforts☆687Sep 28, 2025Updated 5 months ago
- Harbinger Threat Intelligence☆83Dec 8, 2015Updated 10 years ago
- Training materials I've written.☆11Nov 11, 2025Updated 3 months ago
- Detect kerberos attacks in pcap files☆29Dec 13, 2015Updated 10 years ago
- ☆12Jun 7, 2018Updated 7 years ago
- dga classification with fasttext☆13Oct 29, 2018Updated 7 years ago
- Implementation of 《DeepDGA: Adversarially-Tuned Domain Generation and Detection》 arXiv:1610.01969☆26Jul 9, 2019Updated 6 years ago
- Asynchronous DNS query pipeline for Python☆10May 4, 2015Updated 10 years ago
- A collection of pentest tools and resources targeting Hadoop environments☆35Mar 2, 2017Updated 9 years ago
- ☆14Oct 28, 2020Updated 5 years ago
- Show summary of a large number of URLs in a Jupyter Notebook☆17Feb 10, 2026Updated 3 weeks ago
- A flow-based network monitor with Deep Packet Inspection☆29Oct 27, 2016Updated 9 years ago
- Sample DGA classifier☆128Jul 16, 2015Updated 10 years ago
- Cyber Defence Monitoring Course Suite :: Suricata, Bro, Moloch☆61Feb 20, 2017Updated 9 years ago
- Threat Hunting with ELK Workshop (InfoSecWorld 2017)☆65Oct 31, 2017Updated 8 years ago
- Splunk App to assist Sysmon Threat Hunting☆38Mar 7, 2017Updated 8 years ago
- extracts shellcode from a nasm compile macho binary☆17Jan 28, 2021Updated 5 years ago
- Detect and classify pagination links☆15Sep 9, 2020Updated 5 years ago
- Feed Generator for MISP☆19Nov 2, 2022Updated 3 years ago
- A Pastebin scraper designed to look for malicious content☆20Nov 20, 2019Updated 6 years ago
- Find Unicode (including Internationalized) domain squats. https://xntwist.hightower.space/☆21Dec 26, 2022Updated 3 years ago
- Detection of malicious domain names using machine learning and deep learning models☆16Nov 6, 2018Updated 7 years ago
- ☆16Dec 26, 2022Updated 3 years ago
- Scripts to detect Fast-Flux and DGA using DNS query responses☆44Jun 7, 2017Updated 8 years ago
- Script for generating Bro intel files from pdf or html reports☆77Dec 7, 2015Updated 10 years ago
- Algorithms for URL Classification☆19Apr 13, 2015Updated 10 years ago
- ☆24Aug 25, 2015Updated 10 years ago
- My personal experience in Threat Hunting and knowledge gained so far.☆19May 27, 2017Updated 8 years ago
- A Python library for parsing, manipulating, and generating CybOX content.☆80May 1, 2020Updated 5 years ago
- Web-based sensor management suite☆20Mar 2, 2023Updated 3 years ago
- This repository regroups the Yara Rules for the Unprotect Project☆26Nov 19, 2020Updated 5 years ago
- Carve files for MFT entries (eg. blkls output or memory dumps). Recovers filenames (long & short), timestamps ($STD & $FN) and data if re…☆22Jun 3, 2019Updated 6 years ago
- Automated threat intelligence collection with McAfee ATD, OpenDXL and MISP☆22Feb 21, 2020Updated 6 years ago
- A little tool for detecting suspicious privileged NTLM connections, in particular Pass-The-Hash attack, based on event viewer logs.☆173Feb 19, 2025Updated last year