raymondino / InsiderThreat-StreamReasoningUseCaseLinks
This use case aims to leverage stream reasoning techniques and the concept of semantic importance to detect one attacking type of the insider threat -- data exfiltration
☆22Updated 8 years ago
Alternatives and similar repositories for InsiderThreat-StreamReasoningUseCase
Users that are interested in InsiderThreat-StreamReasoningUseCase are comparing it to the libraries listed below
Sorting:
- Insider Threat Detection using Isolation Forest☆16Updated 7 years ago
- ☆20Updated 9 years ago
- A completely automated anomaly detector Zeek network flows files (conn.log).☆80Updated 10 months ago
- User anomaly detector based on logs generated by Osquery framework and machine learning to process those logs.☆33Updated 7 years ago
- CTI database generator and public dataset☆21Updated 5 years ago
- This repository hosts community contributed Kestrel analytics☆17Updated last year
- A collection of resources for security data☆41Updated 7 years ago
- Detection of malicious domain names using machine learning and deep learning models☆16Updated 6 years ago
- "Linking Threat Tactics, Techniques, and Patterns with Defensive Weaknesses, Vulnerabilities and Affected Platform Configurations for Cyb…☆93Updated 11 months ago
- Machine Learning applied to Cyber Security Course☆44Updated 5 years ago
- ☆23Updated 3 years ago
- Anomaly detection in network traffic and event logs using deep learning (w/ Pytorch)☆68Updated 6 years ago
- Experimental ONLY: This consolidated data of scenario-2 of the US-CERT dataset for insider threats to be used with TF 2.0 and Keras☆20Updated 3 years ago
- ☆15Updated 8 years ago
- An anomaly-based intrusion detection system.☆83Updated 2 years ago
- Zeek plugin to generate data on per-packet sizes and intervals☆14Updated 5 years ago
- Scripts to deploy virtual testbed for log data analysis and anomaly detection.☆25Updated last year
- Utility for parsing Bro log files into CSV or JSON format☆41Updated 2 years ago
- Sweet, sweet, secrepo.com html.☆132Updated 3 years ago
- A framework for the Analysis of Intrusion Detection Alerts☆17Updated 3 years ago
- A curated list of resources to deep dive into the intersection of applied machine learning and threat detection.☆19Updated 4 years ago
- A Zeek script to generate features based on timing, volume and metadata for traffic classification.☆56Updated 4 years ago
- Original implementation and resources of DeepCASE as in the S&P '22 paper☆92Updated last year
- Classifier to separate legitimate domains from those generated by a domain generating algorithm (DGA).☆41Updated 8 years ago
- DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic☆42Updated 10 months ago
- A series of labs that will help users apply various data science techniques to security related data.☆132Updated 10 years ago
- Insider threat detection with heterogeneous graph in CERT dataset.☆25Updated 3 years ago
- ☆110Updated 4 years ago
- A method for grouping, clustering, and merging semi-structured alerts☆23Updated 6 months ago
- Graph Representation of MITRE ATT&CK's CTI data☆48Updated 5 years ago