Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
☆41Sep 28, 2016Updated 9 years ago
Alternatives and similar repositories for dga
Users that are interested in dga are comparing it to the libraries listed below
Sorting:
- DGA Domains detection☆70Apr 10, 2018Updated 7 years ago
- The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…☆223Jul 31, 2017Updated 8 years ago
- The Compressed Pcap Packet Indexing Program☆29Nov 10, 2015Updated 10 years ago
- Fast ssdeep comparison library☆13Nov 3, 2014Updated 11 years ago
- Quickly create keyboard pattern based passwords☆14Jun 13, 2015Updated 10 years ago
- ☆11Jan 3, 2018Updated 8 years ago
- AMICO - Accurate Behavior-Based Detection of Malware Downloads☆31Nov 13, 2017Updated 8 years ago
- Network timing evaluation used to detect beacons, works with argus flow as the source☆20May 4, 2016Updated 9 years ago
- Python interfaces to popular bulk WHOIS servers such as Shadowserver and Team Cymru.☆21Sep 12, 2011Updated 14 years ago
- Python scripts for gdb, reverse engineering oriented☆16Sep 20, 2016Updated 9 years ago
- PhishDetect is a library to help identify phishing pages☆108May 11, 2023Updated 2 years ago
- SANS Hunting on the Cheap☆36Apr 12, 2016Updated 9 years ago
- Topics in statistical computing @ ISU☆18Sep 4, 2015Updated 10 years ago
- Network white noise collector☆19Mar 23, 2016Updated 9 years ago
- Detecting SNI based censorship using Iterative Network Tracing☆14Oct 8, 2021Updated 4 years ago
- Suspicious DGA from PDNS and Sandbox.☆186Jul 12, 2022Updated 3 years ago
- Sample DGA classifier☆128Jul 16, 2015Updated 10 years ago
- various slides and presentations I've worked on☆19Mar 21, 2025Updated 11 months ago
- A collection of Python utilities for use in scripts related to working with "indicators of compromise" (IOCs).☆16Dec 19, 2018Updated 7 years ago
- Data Hacking Project☆783Mar 5, 2019Updated 6 years ago
- Threat Intelligence Quotient Test - Dataviz and Statistical Analysis of TI feeds☆177Oct 19, 2015Updated 10 years ago
- dns logger for passive dns collection☆42May 27, 2012Updated 13 years ago
- repo for sharing stuff☆17Jul 1, 2025Updated 8 months ago
- Scripts for communication with Bunitu Trojan C&Cs☆19Oct 29, 2015Updated 10 years ago
- ☆270Aug 25, 2018Updated 7 years ago
- pythonic access to fastbit☆26Aug 10, 2018Updated 7 years ago
- Detection modules of the Nemea system.☆21Mar 26, 2025Updated 11 months ago
- ☆49Apr 22, 2013Updated 12 years ago
- Using nDPI/openDPI to detect flow protocols from a PCAP file or live NIC. This program was modified from example in nDPI and I added a pe…☆23May 6, 2016Updated 9 years ago
- ☆19Sep 2, 2018Updated 7 years ago
- Scripts to detect Fast-Flux and DGA using DNS query responses☆44Jun 7, 2017Updated 8 years ago
- Dmoz RDF parser☆28Jun 22, 2016Updated 9 years ago
- Common pre-processing in NLP such as PPMI computation, SVD-based dimensionality reduction, and PLSR-based distribution prediction.☆23May 21, 2018Updated 7 years ago
- Interface to the boilerpipe Java library by Christian Kohlschutter (http://code.google.com/p/boilerpipe/)☆21May 19, 2021Updated 4 years ago
- DNS server limitation mapper☆26Oct 22, 2018Updated 7 years ago
- Extract relationships between cyber security entities within unstructured text☆24Sep 28, 2018Updated 7 years ago
- Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review☆196Oct 24, 2016Updated 9 years ago
- Random fiddling stored in notebooks☆22Mar 11, 2017Updated 8 years ago
- Proof of concept communications from C# via a web browser process☆21Feb 15, 2019Updated 7 years ago