Alternatives and similar repositories for dga

Users that are interested in dga are comparing it to the libraries listed below

• mlsecproject / tiq-test
  Threat Intelligence Quotient Test - Dataviz and Statistical Analysis of TI feeds
  ☆175Updated 9 years ago
• perdisci / amico
  AMICO - Accurate Behavior-Based Detection of Malware Downloads
  ☆31Updated 7 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆132Updated 10 years ago
• dnsdb / dnsdb-query
  DNSDB query scripts
  ☆75Updated 5 years ago
• keeganhines / snowman
  ☆12Updated 8 years ago
• sooshie / secrepo
  Sweet, sweet, secrepo.com html.
  ☆132Updated 3 years ago
• paralax / BurningDogs
  Honeypot log processor to create OTX Pulse entries
  ☆28Updated last year
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• hrbrmstr / netintel
  A collection of "network intelligence" utilities for R. ASN info, IP reputation, etc.
  ☆39Updated 11 years ago
• adulau / DomainClassifier
  DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…
  ☆78Updated last year
• konstantinberlin / malware-windows-audit-log-detection
  Detection of malware using dynamic behavior and Windows audit logs
  ☆76Updated 10 years ago
• DavidJBianco / Clearcut
  Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review
  ☆197Updated 8 years ago
• kx499-zz / ostip
  ☆28Updated 8 years ago
• syphon1c / Threatelligence
  Threatelligence is a simple cyber threat intelligence feed collector, using Elasticsearch, Kibana and Python to automatically collect int…
  ☆148Updated 11 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• midnightslacker / threat_intel
  Gather and compile open source threat intelligence feeds.
  ☆40Updated 3 years ago
• silascutler / MalPipe
  Malware/IOC ingestion and processing engine
  ☆106Updated 6 years ago
• opendns / og-miner
  OpenDNS Graph Miner
  ☆45Updated 8 years ago
• endgameinc / SANS_THIR16
  SANS Hunting on the Cheap
  ☆35Updated 9 years ago
• Tripwire / TARDIS
  Threat Analysis, Reconnaissance, and Data Intelligence System
  ☆125Updated 10 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• TAXIIProject / yeti
  YETI is a TAXII implementation
  ☆46Updated 6 years ago
• MITRECND / WhoDat
  Pivotable Reverse WhoIs / PDNS Fusion with Registrant Tracking & Alerting plus API for automated queries (JSON/CSV/TXT)
  ☆159Updated 3 years ago
• LiamRandall / bro-scripts
  Bro scripts to be shared with the community
  ☆111Updated 12 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• Cymmetria / CymmetriaResearch
  ☆28Updated 8 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆67Updated 7 years ago
• aboutsecurity / Bro-samples
  Network Forensics Bro scripts & pcap samples
  ☆63Updated 11 years ago
• binorassocies / brostash
  brostash: Linux distribution based on Debian and focusing on network security events collection
  ☆34Updated 5 years ago
• nkleck / Scumblr_Security_Tool
  Scumblr instructions with custom search providers for monitoring malicous content
  ☆17Updated 7 years ago