Alternatives and similar repositories for MulVAL

Users that are interested in MulVAL are comparing it to the libraries listed below

• jingconan / SADIT
  Statitical Anomaly Detector of Internet Traffic (SADIT)
  ☆22Updated 8 years ago
• bez0r / BeaconBits
  Network timing evaluation used to detect beacons, works with argus flow as the source
  ☆20Updated 9 years ago
• stucco / entity-extractor
  Extract cyber security entities from unstructured text
  ☆33Updated 8 years ago
• fiware-cybercaptor / mulval
  MulVAL: A logic-based, data-driven enterprise network security analyzer - Originally developed at Kansas State University, updated for Cy…
  ☆34Updated last year
• eraclitux / machine-learning-netflow
  Ipython notebook that illustrates effectiveness of machine learning algorithms in anomaly detection of netflow data (inbound/outbound DDo…
  ☆78Updated 8 years ago
• zeek / time-machine
  Time-Machine Dynamic Bulk Packet Recorder
  ☆36Updated 4 months ago
• stucco / docs
  Documentation and Issue Tracking for Stucco
  ☆20Updated 8 years ago
• stucco / relation-extractor
  Extract relationships between cyber security entities within unstructured text
  ☆23Updated 6 years ago
• CESNET / Nemea
  System for network traffic analysis and anomaly detection.
  ☆91Updated last month
• Tranalyzer / tranalyzer2
  Tranalyzer generates extended netflow-like flow statistics from large pcap files or extensive ethernet interface measurements. It is inte…
  ☆18Updated 6 years ago
• shendo / websnort
  Web service for scanning pcaps with snort
  ☆109Updated 7 years ago
• zeek / bro-scripts
  Misc. Bro scripts
  ☆64Updated 8 years ago
• surajr / URL-Classification
  Machine learning to classify Malicious (Spam)/Benign URL's
  ☆132Updated 4 years ago
• CybOXProject / schemas
  CybOX Schemas and Schema Development
  ☆43Updated 8 years ago
• CIRCL / cve-portal
  Common Vulnerabilities and Exposures - Portal. Archived and now replaced by vulnerability-lookup.org
  ☆86Updated 5 months ago
• SuperCowPowers / chains
  Python Chained Generators for Network Streams:
  ☆40Updated 4 years ago
• irtimmer / bro-xdp_packet-plugin
  Plugin providing AF_XDP support for Bro.
  ☆14Updated 4 years ago
• hosom / file-extraction
  Extract files from network traffic with Zeek.
  ☆101Updated 5 years ago
• eyalmazuz / AttackAttributionDataset
  ☆17Updated 6 years ago
• sooshie / Security-Data-Analysis
  A series of labs that will help users apply various data science techniques to security related data.
  ☆132Updated 10 years ago
• tatsuiman / rpot2
  Real-time Packet Observation Tool
  ☆39Updated last year
• andrewaeva / DGA
  The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…
  ☆219Updated 8 years ago
• whodewho / FluxEnder
  Ender of Fast-Flux malicious domains.
  ☆27Updated 10 years ago
• cve-search / Plugins
  Plugins written for CVE-Search
  ☆26Updated 4 years ago
• stucco-archive / ontology
  JSON schema representation of Stucco ontology
  ☆19Updated 9 years ago
• csirtgadgets / cif-v1
  DEPRECATED USE v3!
  ☆59Updated 9 years ago
• JustinAzoff / netflow-indexer
  A program that uses xapian to index the flat file databases used by nfdump or flow-tools
  ☆36Updated 7 years ago
• zmap / zschema
  A schema language for JSON documents that allows validation and compilation into various database engines
  ☆40Updated 7 months ago
• dgkim0803 / CTIMiner
  CTI database generator and public dataset
  ☆21Updated 5 years ago
• anthonykasza / scratch_pad
  Bro Snippets
  ☆21Updated 10 years ago