makemytrip / dataShark
dataShark is a Security & Network Event Analytics Framework built on Apache Spark
☆46Updated 8 years ago
Alternatives and similar repositories for dataShark:
Users that are interested in dataShark are comparing it to the libraries listed below
- Real-time Packet Observation Tool☆39Updated last year
- Bro scripts to be shared with the community☆109Updated 12 years ago
- ☆24Updated 9 years ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆140Updated last year
- QRadio ~ Best Threat Intelligence Radio ~ Tune In!☆96Updated 8 years ago
- AMIRA: Automated Malware Incident Response & Analysis☆151Updated 2 months ago
- Python library for Cymon.io APIs☆32Updated 8 years ago
- Feed for verious malicious IPs such as malware and botnets☆12Updated 8 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆79Updated 9 years ago
- DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…☆76Updated last year
- Basic Anomaly IDS capabilities with Python and Bro☆105Updated 7 years ago
- Packetpig - Open Source Big Data Security Analytics☆299Updated 6 years ago
- Gather and compile open source threat intelligence feeds.☆39Updated 3 years ago
- Threat Intelligence distribution☆30Updated 9 years ago
- Meeting notes☆15Updated 8 years ago
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- A Network Inspection Tool☆81Updated 7 years ago
- Metadata Inspection Database Alerting System☆42Updated 11 years ago
- Security Onion Elastic Stack☆46Updated 4 years ago
- Passive Network Audit Framework☆32Updated 6 years ago
- Bro scripts for the ROCK platform. http://rocknsm.io☆33Updated last year
- Workbench: A scalable python framework for security research and development teams.☆91Updated 5 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆113Updated 6 years ago
- ☆28Updated 8 years ago
- Scripts for Bro IDS and ELK Stack☆56Updated 9 years ago
- YETI is a TAXII implementation☆46Updated 5 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Hogzilla is an Intrusion Detection System (IDS) supported by Snort, Apache Spark, HBase and libnDPI, which provides Network Anomaly Detec…☆28Updated 6 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- Misc. Bro scripts☆63Updated 7 years ago