Incremental Machine Leaning by example - Detecting suspicious activity in real time with Zeek data streams, River and JA3 hashes
☆17Aug 10, 2022Updated 3 years ago
Alternatives and similar repositories for JA3_outlier
Users that are interested in JA3_outlier are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Menu for Thor scanner lite☆20Oct 24, 2025Updated 7 months ago
- Presentation materials for talks I've given.☆20Oct 14, 2019Updated 6 years ago
- Threat Detection Rules (Snort/Sigma/Yara)☆14Jan 23, 2024Updated 2 years ago
- A few quick recipes for those that do not have much time during the day☆22Oct 28, 2024Updated last year
- Threat Box Assessment Tool☆19Mar 5, 2026Updated 3 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- visually see issues with supported cipher suites☆19May 28, 2026Updated 3 weeks ago
- Remote Desktop Client Fingerprint script for Zeek. Based off of https://github.com/0x4D31/fatt☆40Jun 20, 2023Updated 3 years ago
- ☆17Jun 8, 2018Updated 8 years ago
- ☆16Mar 16, 2021Updated 5 years ago
- Python bindings for https://github.com/omerbenamram/mft☆25Dec 23, 2025Updated 5 months ago
- (kinda) Malicious Outlook Reader☆19Mar 2, 2021Updated 5 years ago
- A generic security incident response playbook investigating and responding to potential compromises of Okta's internal systems, in the co…☆22Mar 24, 2022Updated 4 years ago
- Terraform is a tool for building, changing, and combining infrastructure safely and efficiently.☆10Aug 9, 2016Updated 9 years ago
- Steve McCanne's Sharkfest '21 Talk☆16Oct 12, 2021Updated 4 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Standardized Malware Analysis Tool☆56Mar 9, 2021Updated 5 years ago
- Plugin providing AF_XDP support for Bro.☆15May 10, 2021Updated 5 years ago
- A triage data collection script for macOS☆30Nov 27, 2020Updated 5 years ago
- ☆33Feb 26, 2022Updated 4 years ago
- Basic RDP honeypot script☆32Mar 13, 2023Updated 3 years ago
- PyCommand Scripts for Immunity Debugger☆37Jun 21, 2014Updated 12 years ago
- Web frontend for Myria☆12Sep 30, 2020Updated 5 years ago
- Implementation of RITA (Real Intelligence Threat Analytics) in Jupyter Notebook with improved scoring algorithm.☆210Jul 21, 2022Updated 3 years ago
- This repository hosts community contributed Kestrel analytics☆18May 28, 2024Updated 2 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- PowerShell 'Hero': scripts for DFIR and automation with a PowerShell menu example.☆37Jul 11, 2023Updated 2 years ago
- Windows Security Logging☆43Jul 17, 2022Updated 3 years ago
- ARDvark parses the Apple Remote Desktop (ARD) files to pull out application usage, user activity, and filesystem listings.☆36Jun 1, 2023Updated 3 years ago
- CSIRT Jump Bag☆27Apr 25, 2024Updated 2 years ago
- Scripts to integrate DFIR-IRIS, MISP and TimeSketch☆37Feb 2, 2022Updated 4 years ago
- Graham, making s'mores with attrs and marshmallow.☆12Sep 24, 2024Updated last year
- Bluehat 2018 Graphs for Security Workshop☆42Sep 29, 2018Updated 7 years ago
- Disambiguating biomedical and clinical concepts with word embeddings☆14Apr 17, 2018Updated 8 years ago
- CTI-URLScan is a command line tool to enable analysts to search URLscan.io submissions. Pull screenshot and DOM content. As well as, auto…☆11Mar 2, 2021Updated 5 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A library for high-performance lightweight threads☆20Sep 21, 2011Updated 14 years ago
- CertWatcher is a new take on monitoring for phishing sites. It is meant to be a set and forget service that will send you a daily report …☆10Oct 12, 2020Updated 5 years ago
- Language server for Zeek script☆17Jun 13, 2026Updated last week
- A collection of tools adversaries commonly use in an attack.☆15Nov 23, 2024Updated last year
- ☆12Apr 21, 2019Updated 7 years ago
- Various capabilities for static malware analysis.☆80Sep 4, 2024Updated last year
- A command-line tool and Python library for parsing Windows Master File Table ($MFT) and importing the results into Elasticsearch.☆13Jun 3, 2026Updated 2 weeks ago