hanzhang0116 / BotDigger
Detecting DGA bots in a single network using DNS traffic
☆26Updated 6 years ago
Alternatives and similar repositories for BotDigger:
Users that are interested in BotDigger are comparing it to the libraries listed below
- ☆76Updated 2 years ago
- Passive DNS V2☆62Updated 10 years ago
- Analysis scripts for the Bro Intrusion Detection System☆59Updated 10 years ago
- Bro IDS + ELK Stack to detect and block data exfiltration☆47Updated 6 years ago
- Bro Intel Feed Linter☆26Updated 5 years ago
- DGA Domains detection☆62Updated 6 years ago
- Bro scripts to be shared with the community☆109Updated 11 years ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- integrating bro into yara☆33Updated 10 years ago
- ☆72Updated 3 years ago
- Various Bro scripts☆96Updated 8 years ago
- Improvements of/over the original rule2alert☆56Updated 10 years ago
- ☆85Updated 11 years ago
- NTP logger/honeypot☆53Updated 10 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 6 years ago
- Bro IDS Dockerfile☆129Updated 5 years ago
- ☆17Updated 4 years ago
- (Unofficial) Python API for https://malwr.com/☆62Updated 8 years ago
- A collection of Bro scripts I've written☆40Updated 9 years ago
- Collection of bro scripts☆9Updated 9 years ago
- ☆38Updated 6 years ago
- Bro-IDS scripts☆50Updated 8 years ago
- Ops-Trust Platform - Portal☆21Updated 8 years ago
- DNSDB query scripts☆75Updated 5 years ago
- An ICAP Server with yara scanner for URL and content.☆58Updated last month
- Passive DNS visualization and Passive DNS server toolkit☆35Updated 12 years ago
- Flow-based SSH intrusion detection system (NfSen plugin)☆41Updated 9 years ago
- (OBSOLETE) Plugins for Bro☆53Updated 7 years ago
- Extract files from network traffic with Zeek.☆100Updated 4 years ago
- Rule sets for Sagan☆102Updated 4 years ago