fkie-cad / COMIDDS
A comprehensive survey of datasets for research in host-based and/or network-based intrusion detection, with a focus on enterprise networks
☆30Updated last month
Related projects: ⓘ
- ☆89Updated 4 years ago
- AttacKG: Constructing Knowledge-enhanced Attack Graphs from Cyber Threat Intelligence Reports☆125Updated last year
- SMET : Semantic Mapping of CVE to ATT&CK and its Application to Cybersecurity☆34Updated last week
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆84Updated 2 months ago
- [TDSC 2021] IntruSion alert-driven Attack Graph Extractor. https://ieeexplore.ieee.org/document/9557854☆33Updated 2 months ago
- System traces dataset generation tool.☆12Updated 2 years ago
- ☆70Updated last year
- GraphChi's C++ version. Big Data - small machine.☆16Updated 3 years ago
- KRYSTAL: Knowledge Graph-based Framework for Tactical Attack Discovery in Audit Data☆26Updated 4 months ago
- A framework for synthesizing lateral movement login data.☆20Updated 3 years ago
- Extracting Attack Behavior from Threat Reports☆75Updated last year
- ☆18Updated 3 years ago
- Material from the DARPA Transparent Computing Program☆172Updated 4 years ago
- Official ID2T repository. ID2T creates labeled IT network datasets that contain user defined synthetic attacks.☆54Updated last year
- Original implementation and resources of DeepCASE as in the S&P '22 paper☆90Updated last year
- ☆20Updated 3 years ago
- ☆11Updated 5 years ago
- Datasets used in the StreamSpot experiments☆48Updated 8 years ago
- Feature extraction for CERT insider threat test dataset☆72Updated 11 months ago
- ATLAS: A Sequence-based Learning Approach for Attack Investigation☆137Updated 2 years ago
- ☆10Updated 3 years ago
- A python app to predict Att&ck tactics and techniques from cyber threat reports☆111Updated 10 months ago
- ☆51Updated 3 weeks ago
- A Zeek script to generate features based on timing, volume and metadata for traffic classification.☆53Updated 3 years ago
- ☆32Updated last month
- A method for grouping, clustering, and merging semi-structured alerts☆15Updated 6 months ago
- A logic-based enterprise network security analyzer☆105Updated last year
- ☆18Updated 3 years ago
- Instructions and tools to use data from engagement 5 of Darpa Transparent Computing Program☆19Updated 3 years ago
- TRAM is an open-source platform designed to advance research into automating the mapping of cyber threat intelligence reports to MITRE AT…☆431Updated 3 months ago