makemytrip / dataShark
dataShark is a Security & Network Event Analytics Framework built on Apache Spark
☆46Updated 8 years ago
Alternatives and similar repositories for dataShark:
Users that are interested in dataShark are comparing it to the libraries listed below
- Passive Network Audit Framework☆32Updated 6 years ago
- DomainClassifier is a Python (2/3) library to extract and classify Internet domains/hostnames/IP addresses from raw unstructured text fil…☆77Updated last year
- Legal, procedural and policies document templates for operating an IRT☆64Updated last year
- Packetpig - Open Source Big Data Security Analytics☆298Updated 6 years ago
- Flexible framework that allows automation to process cyber threat information and update endpoint defense tools.☆21Updated 6 years ago
- ☆24Updated 9 years ago
- Aggregates security threats from a number of online sources, and outputs to Syslog CEF, Snort Signatures, Iptables rules, hosts.deny, etc…☆79Updated 9 years ago
- Workbench: A scalable python framework for security research and development teams.☆92Updated 5 years ago
- Serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch.☆140Updated last year
- Cyber Analytics Platform and Examination System (CAPES) Project Page☆60Updated 5 years ago
- Automatic attack detector and botnet classifier☆28Updated 8 years ago
- AMIRA: Automated Malware Incident Response & Analysis☆151Updated 3 months ago
- Misc. Bro scripts☆63Updated 7 years ago
- A honeypot proxy for mongodb. When run, this will proxy and log all traffic to a dummy mongodb server.☆92Updated 2 years ago
- Bro scripts to be shared with the community☆109Updated 12 years ago
- This is a script module for Bro that encapsulates and detects activity related to the Mandiant APT1 report.☆47Updated 11 years ago
- Bro-IDS scripts☆50Updated 8 years ago
- YETI is a TAXII implementation☆46Updated 5 years ago
- Scumblr instructions with custom search providers for monitoring malicous content☆17Updated 7 years ago
- P2P botnet detection by tracking conversations☆28Updated 9 years ago
- Feed for verious malicious IPs such as malware and botnets☆12Updated 8 years ago
- Evading Snort Intrusion Detection System.☆77Updated 3 years ago
- Threat Analysis, Reconnaissance, and Data Intelligence System☆125Updated 9 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- Parse URLCrazy and dnstwist output and compare against previous runs to identify new typosquatted domains.☆51Updated 9 years ago
- Network Forensics Bro scripts & pcap samples☆62Updated 11 years ago
- ☆71Updated 3 years ago
- Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).☆41Updated 8 years ago
- Generates visualizations from the output of flow tools such as SiLK.☆35Updated 8 years ago
- stoQ Public Plugins☆71Updated 2 years ago