jayjacobs / dgaLinks
Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
☆41Updated 9 years ago
Alternatives and similar repositories for dga
Users that are interested in dga are comparing it to the libraries listed below
Sorting:
- Threat Intelligence Quotient Test - Dataviz and Statistical Analysis of TI feeds☆175Updated 10 years ago
- ☆12Updated 8 years ago
- AMICO - Accurate Behavior-Based Detection of Malware Downloads☆31Updated 7 years ago
- A series of labs that will help users apply various data science techniques to security related data.☆132Updated 10 years ago
- DNSDB query scripts☆75Updated 5 years ago
- Sweet, sweet, secrepo.com html.☆132Updated 4 years ago
- OpenDNS Graph Miner☆45Updated 8 years ago
- Malware/IOC ingestion and processing engine☆107Updated 6 years ago
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 9 years ago
- Detection of malware using dynamic behavior and Windows audit logs☆76Updated 10 years ago
- Honeypot log processor to create OTX Pulse entries☆28Updated last year
- Network timing evaluation used to detect beacons, works with argus flow as the source☆20Updated 9 years ago
- Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review☆197Updated 9 years ago
- Workbench: A scalable python framework for security research and development teams.☆92Updated 6 years ago
- Malware Classifier From Network Captures☆82Updated 8 years ago
- This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…☆35Updated 6 years ago
- DGA Domains detection☆69Updated 7 years ago
- Network Forensics Bro scripts & pcap samples☆63Updated 11 years ago
- TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…☆154Updated 4 months ago
- DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…☆78Updated last year
- SANS Hunting on the Cheap☆36Updated 9 years ago
- ☆28Updated 8 years ago
- Pivotable Reverse WhoIs / PDNS Fusion with Registrant Tracking & Alerting plus API for automated queries (JSON/CSV/TXT)☆159Updated 4 years ago
- Tool to extract indicators of compromise from security reports in PDF format☆35Updated 9 years ago
- Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect int…☆148Updated 11 years ago
- Threat Analysis, Reconnaissance, and Data Intelligence System☆125Updated 10 years ago
- Spam Honeypot with Intelligent Virtual Analyzer☆139Updated 6 months ago
- Bro-IDS scripts☆50Updated 9 years ago
- Bro scripts to be shared with the community☆111Updated 12 years ago
- Scumblr instructions with custom search providers for monitoring malicous content☆17Updated 7 years ago