Alternatives and similar repositories for user-behavior-anomaly-detector:

Users that are interested in user-behavior-anomaly-detector are comparing it to the libraries listed below

• jasklabs / blackhat2017
  Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases
  ☆31Updated 7 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 8 years ago
• NVISOsecurity / ee-outliers
  Open-source framework to detect outliers in Elasticsearch events
  ☆208Updated last year
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 5 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆63Updated 6 years ago
• CityBaseInc / SIAC
  SIAC is an enterprise SIEM built on open-source technology.
  ☆114Updated 6 years ago
• zeek / zeek-osquery
  Bro/Zeek integration with osquery
  ☆94Updated 4 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆75Updated 6 months ago
• philarkwright / DGA-Detection
  DGA Domain Detection using Bigram Frequency Analysis
  ☆54Updated 7 years ago
• zeek / zeek-agent
  This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2
  ☆123Updated 4 years ago
• apache / metron-bro-plugin-kafka
  Apache Metron
  ☆59Updated 4 years ago
• corelight / ecs-mapping
  Mapping Corelight or Zeek data to Elastic Common Schema fields
  ☆34Updated 2 weeks ago
• STIXProject / openioc-to-stix
  Generate STIX XML from OpenIOC XML
  ☆91Updated 6 years ago
• dgunter / ParseZeekLogs
  Utility for parsing Bro log files into CSV or JSON format
  ☆41Updated 2 years ago
• alexfrancow / A-Detector
  An anomaly-based intrusion detection system.
  ☆82Updated 2 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆69Updated 4 years ago
• spitfire55 / MegaDev
  Bro IDS + ELK Stack to detect and block data exfiltration
  ☆46Updated 6 years ago
• beave / sagan-rules
  Rule sets for Sagan
  ☆102Updated 4 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆132Updated 9 years ago
• cmu-sei / cyobstract
  A tool to extract structured cyber information from incident reports.
  ☆80Updated 6 years ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• stratosphereips / StratosphereTestingFramework
  The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …
  ☆50Updated 6 years ago
• CSIRT-MU / AIDA-Framework
  A framework for the Analysis of Intrusion Detection Alerts
  ☆17Updated 3 years ago
• sooshie / secrepo
  Sweet, sweet, secrepo.com html.
  ☆131Updated 3 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆100Updated 4 years ago
• fiware-cybercaptor / mulval
  MulVAL: A logic-based, data-driven enterprise network security analyzer - Originally developed at Kansas State University, updated for Cy…
  ☆32Updated 9 months ago
• eraclitux / machine-learning-netflow
  Ipython notebook that illustrates effectiveness of machine learning algorithms in anomaly detection of netflow data (inbound/outbound DDo…
  ☆78Updated 7 years ago
• jayjacobs / dga
  Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).
  ☆41Updated 8 years ago
• surajr / URL-Classification
  Machine learning to classify Malicious (Spam)/Benign URL's
  ☆125Updated 3 years ago
• Kirtar22 / ATTACK-Threat_Intel
  Graph Representation of MITRE ATT&CK's CTI data
  ☆48Updated 5 years ago