morrigan / user-behavior-anomaly-detector

Related projects ⓘ

Alternatives and complementary repositories for user-behavior-anomaly-detector

• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆205Updated last year
• hgascon / security-datasets
  A collection of resources for security data
  ☆40Updated 6 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆74Updated 3 months ago
• jasklabs / blackhat2017
  Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases
  ☆30Updated 7 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• sooshie / secrepo
  Sweet, sweet, secrepo.com html.
  ☆132Updated 3 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆68Updated 4 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆63Updated 6 years ago
• fiware-cybercaptor / mulval
  MulVAL: A logic-based, data-driven enterprise network security analyzer - Originally developed at Kansas State University, updated for Cy…
  ☆31Updated 6 months ago
• CSIRT-MU / AIDA-Framework
  A framework for the Analysis of Intrusion Detection Alerts
  ☆16Updated 3 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆131Updated 9 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆19Updated 8 years ago
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 4 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• raymondino / InsiderThreat-StreamReasoningUseCase
  This use case aims to leverage stream reasoning techniques and the concept of semantic importance to detect one attacking type of the ins…
  ☆22Updated 7 years ago
• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆53Updated 7 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆95Updated 4 years ago
• alexfrancow / A-Detector
  An anomaly-based intrusion detection system.
  ☆80Updated last year
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆48Updated 5 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆78Updated 6 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated last year
• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆42Updated 8 years ago
• abhinavbom / Threat-Intelligence-Hunter
  TIH is an intelligence tool that helps you in searching for IOCs across multiple openly available security feeds and some well known APIs…
  ☆148Updated 6 months ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆102Updated 3 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆112Updated 5 years ago
• kx499-zz / ostip
  ☆28Updated 7 years ago
• rkovar / dns_detection
  Detecting DNS Spoofing, DNS Tunneling, DNS Exfiltration
  ☆35Updated 9 years ago
• ahm3dhany / IDS-Evasion
  Evading Snort Intrusion Detection System.
  ☆75Updated 3 years ago