morrigan / user-behavior-anomaly-detector

Related projects: ⓘ

• raymondino / InsiderThreat-StreamReasoningUseCase
  This use case aims to leverage stream reasoning techniques and the concept of semantic importance to detect one attacking type of the ins…
  ☆22Updated 7 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆72Updated last month
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated last year
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 4 years ago
• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆52Updated 7 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• jasklabs / blackhat2017
  Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases
  ☆30Updated 7 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆62Updated 6 years ago
• hgascon / security-datasets
  A collection of resources for security data
  ☆39Updated 6 years ago
• CSIRT-MU / AIDA-Framework
  A framework for the Analysis of Intrusion Detection Alerts
  ☆16Updated 2 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆130Updated 9 years ago
• alexfrancow / A-Detector
  An anomaly-based intrusion detection system.
  ☆81Updated last year
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆18Updated 8 years ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆89Updated 5 years ago
• sooshie / secrepo
  Sweet, sweet, secrepo.com html.
  ☆133Updated 2 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆95Updated 3 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆78Updated 6 years ago
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆47Updated 4 years ago
• fiware-cybercaptor / mulval
  MulVAL: A logic-based, data-driven enterprise network security analyzer - Originally developed at Kansas State University, updated for Cy…
  ☆31Updated 4 months ago
• JoakimBulow / InsiderThreatIsolationForest
  Insider Threat Detection using Isolation Forest
  ☆16Updated 6 years ago
• rkovar / dns_detection
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆35Updated 8 years ago
• PSJoshi / Notes
  My notes on various topics
  ☆64Updated 11 months ago
• amitdeshmukh / malware-domain-detection
  Detection of malicious domains via character co-occurrence analysis in URL's.
  ☆9Updated 8 years ago
• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆42Updated 7 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆110Updated 5 years ago
• konstantinberlin / malware-windows-audit-log-detection
  Detection of malware using dynamic behavior and Windows audit logs
  ☆77Updated 9 years ago
• CybOXProject / schemas
  CybOX Schemas and Schema Development
  ☆42Updated 7 years ago
• adamkusey / securitai-ui
  ☆32Updated 6 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 5 years ago