Alternatives and similar repositories for degas

Users that are interested in degas are comparing it to the libraries listed below

• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆81Updated 2 months ago
• stratosphereips / whois-similarity-distance
  This python scripts can calculate the WHOIS Similarity Distance between two given domains.
  ☆29Updated 2 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆81Updated 7 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆68Updated 7 years ago
• MISP / misp-rfc
  Specifications used in the MISP project including MISP core format
  ☆52Updated 3 months ago
• DCSO / MISP-dockerized
  ☆34Updated 5 years ago
• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆54Updated 8 years ago
• MISP / misp-objects
  Definition, description and relationship types of MISP objects
  ☆100Updated last week
• micrictor / spl-spt
  Zeek plugin to generate data on per-packet sizes and intervals
  ☆14Updated 5 years ago
• kx499-zz / ostip
  ☆28Updated 8 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆41Updated 9 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• farsightsec / sie-dns-sensor
  Debian and Red Hat packaging for SIE DNS sensor
  ☆15Updated 2 years ago
• Javierop20 / joy2ja3
  Python tool for converting from joy format to JA3 format SSL/TLS hashes
  ☆11Updated 5 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆37Updated 2 years ago
• PUNCH-Cyber / stoq-plugins-public
  stoQ Public Plugins
  ☆71Updated 2 years ago
• DevoInc / sightingdb
  Sighting DB is designed to scale writing and reading a count of attributes, tracking when if was first and last seen
  ☆16Updated last year
• CybOXProject / schemas
  CybOX Schemas and Schema Development
  ☆43Updated 8 years ago
• ncsa / bro-doctor
  ☆24Updated 5 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• adulau / MalwareClassifier
  Malware Classifier From Network Captures
  ☆82Updated 8 years ago
• adulau / pdns-qof
  Passive DNS Common Output Format
  ☆37Updated last year
• oasis-open / cti-pattern-matcher
  OASIS TC Open Repository: Match STIX content against STIX patterns
  ☆46Updated 3 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆113Updated 6 years ago
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆82Updated 6 months ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆132Updated 10 years ago
• pchaigno / dga-collection
  A collection of known Domain Generation Algorithms
  ☆66Updated 9 years ago
• Concinnity-Risks / LogisticalBudget
  This project contains code for comparing or ranking APT capabilities and operational capacity. The metrics are meant to quantify, rank, o…
  ☆35Updated 6 years ago