Alternatives and similar repositories for deep-lookup:

Users that are interested in deep-lookup are comparing it to the libraries listed below

• hmaccelerate / DGA_Detection
  DGA Detection with ML and DL
  ☆47Updated 5 years ago
• stratosphereips / zeek_anomaly_detector
  A completely automated anomaly detector Zeek network flows files (conn.log).
  ☆77Updated 8 months ago
• jbaggs / anomalous-dns
  A set of zeek scripts providing a module for tracking and correlating abnormal DNS behavior.
  ☆33Updated 3 months ago
• Cyberdefence-Lab-Murcia / UMUDGA
  Domain Generation Algorithm official repository. Please visit the WIKI page for more information
  ☆11Updated last year
• pevma / SEPTun-Mark-II
  Suricata Extreme Performance Tuning guide - Mark II
  ☆116Updated 6 years ago
• blacktop / docker-zeek
  Zeek IDS Dockerfile
  ☆101Updated 2 years ago
• travisbgreen / hunting-rules
  Suricata rules for network anomaly detection
  ☆157Updated 3 weeks ago
• zeek / zeek-docker
  Docker files for building Zeek.
  ☆86Updated last year
• SeisoLLC / zeek-kafka
  A Zeek log writer plugin that publishes to Kafka.
  ☆46Updated 3 months ago
• TW-NCERT / ctifeeds
  Cyber Threat Intelligence Feeds
  ☆95Updated 8 years ago
• andrewaeva / DGA
  The repository that contains the algorithms for generating domain names, dictionaries of malicious domain names. Developed to research th…
  ☆219Updated 7 years ago
• exp0se / dga_detector
  DGA Domains detection
  ☆65Updated 7 years ago
• michalpurzynski / zeek-scripts
  zeek-scripts
  ☆44Updated 6 years ago
• COSSAS / dgad
  DGA Detective - Hunt domains generated by Domain Generation Algorithms to identify malware traffic
  ☆40Updated 8 months ago
• zeek / zeek-af_packet-plugin
  Plugin providing native AF_Packet support for Zeek.
  ☆34Updated last year
• zeek-flowmeter / zeek-flowmeter
  A Zeek script to generate features based on timing, volume and metadata for traffic classification.
  ☆55Updated 4 years ago
• OISF / suricata-update
  The tool for updating your Suricata rules.
  ☆267Updated 4 months ago
• netrack / learn
  Labeled DNS exfiltration datasets and algorithms of DNS tunneling detection
  ☆28Updated 2 years ago
• DynamiteAI / dynamite-nsm
  DynamiteNSM is a free Network Security Monitor developed by Dynamite Analytics to enable network visibility and advanced cyber threat det…
  ☆170Updated last year
• CIRCL / PyPDNS
  Client API to query any Passive DNS implementation following the Passive DNS - Common Output Format.
  ☆78Updated 3 weeks ago
• pevma / SEPTun
  Suricata Extreme Performance Tuning guide
  ☆207Updated 7 years ago
• zeek / zeek-agent-v2
  Open source endpoint agent providing host information to Zeek. [v2]
  ☆80Updated 5 months ago
• endgameinc / dga_predict
  ☆269Updated 6 years ago
• tatsuiman / malware-traffic-analysis.net
  Download pcap files from http://www.malware-traffic-analysis.net/
  ☆75Updated 7 years ago
• OISF / suricata-verify
  Suricata Verification Tests - Testing Suricata Output
  ☆105Updated this week
• CriticalPathSecurity / Public-Intelligence-Feeds
  Standard-Format Threat Intelligence Feeds
  ☆112Updated this week
• hanzhang0116 / BotDigger
  Detecting DGA bots in a single network using DNS traffic
  ☆26Updated 7 years ago
• corelight / zeek-community-id
  Zeek support for Community ID flow hashing.
  ☆35Updated last year
• 360netlab / DGA
  Suspicious DGA from PDNS and Sandbox.
  ☆183Updated 2 years ago
• 0xtf / nsm-attack
  Mapping NSM rules to MITRE ATT&CK
  ☆70Updated 4 years ago