Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

A platform built for easy-to-use automated network traffic analysis

A Python-based network traffic analyzer for PCAP files, providing insights into protocol distribution, IP communications, and potential port scanning activities.

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

Notes for technologies useful in applying ml to the unsw-nb15 dataset (Draft)

Keysight NAS (IXIA) Cloud Demo Examples

OTARIS traffic analyzer

Curriculum developed to assist in CyberSkyline challenges

This project is a live network monitoring dashboard that leverages tree-based machine learning algorithms to detect intrusions in real-time. The system uses Flask and Socket.IO for real-time data updates, and Chart.js for data visualization. The dashboard provides various charts to visualize network data and sends notifications for suspicious activ

This repository provides comprehensive guides, configurations, rules, and practical examples for Snort, the open-source intrusion detection system (IDS). Ideal for cybersecurity professionals and enthusiasts looking to enhance their network security skills.

Visualisateur graphique de trafic reseau sous forme de graphe de flux

The "Network Packet Analyzer" project is a network packet analysis tool, helping to analyze and display information about data packets transmitted over the network.

A comprehensive networking framework designed primarily for high-performance processing of raw packets. Implements most modern protocols (specifically TCP/IP) and further networking software. In addition, the project contains a suite of networking tools built entirely on top of the framework

ThreatGuard is an advanced threat detection system that utilizes the CICIDS 2017 dataset for network traffic analysis and anomaly detection.

Dryad: Deploying Adaptive Trees on Programmable Switches for Networking Classification (ICNP2023)

A simple, yet powerful Python-based network anomaly detection tool that uses machine learning to analyze network traffic and detect suspicious activity. The tool integrates with the VirusTotal API to check the reputation of anomalous IP addresses.

Network traffic analysis, traffic characteristics extraction, flow migration and evaluation