Alternatives and similar repositories for degas

Users that are interested in degas are comparing it to the libraries listed below

• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆54Updated 7 years ago
• pchaigno / dga-collection
  A collection of known Domain Generation Algorithms
  ☆66Updated 9 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆66Updated 7 years ago
• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆41Updated 8 years ago
• 3c7 / aptmap
  A map displaying threat actors from the misp-galaxy
  ☆33Updated 2 years ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Updated 2 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆80Updated 6 years ago
• InQuest / ThreatKB
  Knowledge base workflow management for YARA rules and C2 artifacts (IP, DNS, SSL) (ALPHA STATE AT THE MOMENT)
  ☆102Updated 3 weeks ago
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 5 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆113Updated 6 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• jalewis / actortrackr
  Home to the ActorTrackr source code
  ☆29Updated 7 years ago
• andrewaeva / DGA
  The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…
  ☆219Updated 7 years ago
• egaus / malicious_url_analysis
  ☆18Updated 7 years ago
• TW-NCERT / ctifeeds
  Cyber Threat Intelligence Feeds
  ☆97Updated 8 years ago
• MISP / PyMISPWarningLists
  Pythonic way to work with the warning lists defined there: https://github.com/MISP/misp-warninglists
  ☆33Updated last week
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆81Updated 3 months ago
• neu5ron / TMInfosec
  Repository of all the sites related to infosec IP/Domain/Hash/SSL/etc OSINT and eventually will include more.
  ☆66Updated last year
• armedpot / honeytrap
  Last download from git://git.carnivore.it/honeytrap.git of Honytrap by Tillmann Werner
  ☆43Updated 3 years ago
• open-source-rs / The-Cyber-Intelligence-Analyst-Cookbook
  For storing of the volumes
  ☆4Updated 5 years ago
• QTek / QRadio
  QRadio ~ Best Threat Intelligence Radio ~ Tune In!
  ☆96Updated 9 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆51Updated 5 months ago
• ninoseki / uzen
  Website crawler with YARA detection
  ☆88Updated last year
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated 10 months ago
• xn-twist / xn-twist
  Find Unicode (including Internationalized) domain squats. https://xntwist.hightower.space/
  ☆22Updated 2 years ago
• adulau / crl-monitor
  CRL Monitor - X.509 Certificate Revocation List monitoring and X.509/Subject caching
  ☆34Updated 4 years ago
• csirtgadgets / verbose-robot
  The Fastest way to consume Threat Intel
  ☆25Updated 3 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆101Updated 5 years ago
• adulau / pdns-qof
  Passive DNS Common Output Format
  ☆36Updated 9 months ago