Alternatives and similar repositories for user-behavior-anomaly-detector:

Users that are interested in user-behavior-anomaly-detector are comparing it to the libraries listed below

• hgascon / security-datasets
  A collection of resources for security data
  ☆41Updated 7 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆77Updated 9 months ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆71Updated 4 years ago
• sooshie / secrepo
  Sweet, sweet, secrepo.com html.
  ☆131Updated 3 years ago
• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆41Updated 8 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆80Updated 6 years ago
• jasklabs / blackhat2017
  Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases
  ☆32Updated 7 years ago
• raymondino / InsiderThreat-StreamReasoningUseCase
  This use case aims to leverage stream reasoning techniques and the concept of semantic importance to detect one attacking type of the ins…
  ☆22Updated 8 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 6 years ago
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 7 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆66Updated 7 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆132Updated 10 years ago
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 5 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• stratosphereips / Manati
  A web-based tool to assist the work of the intuitive threat analysts.
  ☆113Updated 6 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• cameling / logminer
  Mine patterns from logs
  ☆27Updated 8 years ago
• OpenSOC / opensoc-ui
  User interface for OpenSOC
  ☆100Updated 9 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆209Updated last year
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• HKcyberstark / TI_Mod
  Threat Intelligence with Elastic - Minemeld integration with Elasticsearch
  ☆19Updated 3 years ago
• MISP / docker-misp
  Automated Docker MISP container - Malware Information Sharing Platform and Threat Sharing
  ☆105Updated last year
• JoakimBulow / InsiderThreatIsolationForest
  Insider Threat Detection using Isolation Forest
  ☆16Updated 6 years ago
• alexfrancow / A-Detector
  An anomaly-based intrusion detection system.
  ☆82Updated 2 years ago
• midnightslacker / threat_intel
  Gather and compile open source threat intelligence feeds.
  ☆39Updated 3 years ago
• 0xtf / testmynids.org
  A website and framework for testing NIDS detection
  ☆57Updated 3 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago