morrigan / user-behavior-anomaly-detectorLinks
User anomaly detector based on logs generated by Osquery framework and machine learning to process those logs.
☆33Updated 8 years ago
Alternatives and similar repositories for user-behavior-anomaly-detector
Users that are interested in user-behavior-anomaly-detector are comparing it to the libraries listed below
Sorting:
- A completely automated anomaly detector Zeek network flows files (conn.log).☆81Updated 2 months ago
- Open-source framework to detect outliers in Elasticsearch events☆209Updated 2 years ago
- Machine learning algorithms applied on log analysis to detect intrusions and suspicious activities.☆158Updated last week
- A tool to extract structured cyber information from incident reports.☆81Updated 7 years ago
- A framework for the Analysis of Intrusion Detection Alerts☆17Updated 3 years ago
- A collection of resources for security data☆41Updated 7 years ago
- DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…☆171Updated 2 years ago
- The stratosphere testing framework is mean to help in the researching and verification of the behavioral models used by the Stratoshpere …☆50Updated 7 years ago
- CTI database generator and public dataset☆21Updated 5 years ago
- Mapping NSM rules to MITRE ATT&CK☆72Updated 5 years ago
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- ☆32Updated 7 years ago
- Sweet, sweet, secrepo.com html.☆132Updated 4 years ago
- DGA Domains detection☆68Updated 7 years ago
- Apache Metron☆60Updated 5 years ago
- ☆51Updated 7 years ago
- A series of labs that will help users apply various data science techniques to security related data.☆132Updated 10 years ago
- Data sets and examples for Jask Labs Blackhat 2017 Handout: Top 10 Machine Learning Cyber Security Use Cases☆30Updated 8 years ago
- Example code for our book Introduction to Artificial Intelligence for Security Professionals☆154Updated 6 years ago
- An anomaly-based intrusion detection system.☆84Updated 2 years ago
- SIAC is an enterprise SIEM built on open-source technology.☆116Updated 6 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- A framework for the real-time network traffic analysis based on world-leading technologies for distributed stream processing, network tra…☆102Updated 4 years ago
- Docker files for building Zeek.☆87Updated 2 years ago
- A web-based tool to assist the work of the intuitive threat analysts.☆112Updated 6 years ago
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last month
- An analytical framework for network traffic and behavioral analytics☆456Updated 2 years ago
- Open Source SIEM (Security Information and Event Management system).☆220Updated 2 years ago
- This project is no longer maintained. There's a successor at https://github.com/zeek/zeek-agent-v2☆123Updated 4 years ago
- Clearcut is a tool that uses machine learning to help you focus on the log entries that really need manual review☆197Updated 8 years ago