eqllib
Analytics Detector Library
An analytics library developed in Python to detect adversary behaviors using the Event Query Language (EQL) syntax
158 stars
20 watching
46 forks
Language: Python
last commit: about 4 years ago
Linked from 1 awesome list
0x4d31/awesome-threat-detectionRelated projects:
| Repository | Description | Stars |
|---|---|---|
| endgameinc/eql | An analytics query language for Elasticsearch that enables querying and analyzing data in real-time | 219 |
| endgameinc/binarypig | An open-source framework for analyzing and processing binary data in Hadoop using Pig, Elasticsearch, and Django. | 144 |
 seldonio/alibi-detect | A Python library for detecting outliers, adversarial examples, and data drift in various types of data | 2,262 |
| endgameinc/gym-malware | An environment for training agents to manipulate malware samples using reinforcement learning to evade detection | 617 |
 kugg/irule-detector | Detects and analyzes command injection vulnerabilities in iRules written in the Tool Command Language (Tcl), allowing for identification of potential security flaws. | 5 |
| endgameinc/rta | A framework of python scripts designed to test detection capabilities against malicious tradecraft modeled after MITRE ATT&CK tactics. | 1,054 |
 endeveit/enca | Provides minimal cgo bindings for the libenca language detection library | 16 |
 cylance/pypackerdetect | An executable detection tool using PE parsing and machine learning signatures to identify packed samples. | 30 |
 secrary/idenlibx | A plugin for disassembling and analyzing x32dbg debugging sessions. | 41 |
 parroty/excheck | A testing library for Elixir programming language | 316 |
| endgameinc/varna | An AWS CloudTrail monitoring tool for alerting on suspicious activity | 51 |
 nyu-mll/bbq | A dataset and benchmarking framework to evaluate the performance of question answering models on detecting and mitigating social biases. | 92 |
 eaglelab-zju/dgld | An open-source library for training and evaluating graph anomaly detection models | 64 |
 ethz-spylab/rlhf_trojan_competition | Detecting backdoors in language models to prevent malicious AI usage | 109 |
 exeinfoasl/asl | An executable file detector software that identifies packers, protectors, compilers, .NET obfuscators, and other types of malware or unwanted code. | 772 |