Resources for DFIR Professionals Responding to the REvil Ransomware Kaseya Supply Chain Attack

Poseidon is a python-based application that leverages software defined networks (SDN) to acquire and then feed network traffic to a number of machine learning techniques. The machine learning algor…

Machine learning plugins for network traffic

A user-friendly tool for creating multi-tenant environments to run experiments in, such as detecting lateral movement attacks.

Dataset of Probing Attacks (Port Scan) performed with nmap, unicornscan, hping3, zmap and masscan

Machine learning algorithms applied on log analysis to detect intrusions and suspicious activities.

People tracker on the Internet: OSINT analysis and research tool by Jose Pino

FakeFinder builds a modular framework for evaluating various deepfake detection models, offering a web application as well as API access for integration into existing workflows.

This program is an non-object oriented opensource, hidden and undetectable backdoor/reverse shell/RAT for Windows made in Python 3 which contains many features such as multi-client support and cros…

Guidance for mitigation web shells. #nsacyber

Deep Learning Log Analysis using Pytorch

A network intrusion detection system based on incremental statistics (AfterImage) and an ensemble of autoencoders (KitNET)

Codes for Artificial Intelligence (codes written in python), Data Analytics, Machine Learning and Information and Cyber Security.

100+ Python challenging programming exercises

A geolocation OSINT tool. Offers geolocation information gathering through social networking platforms.

使用机器学习识别WebShell

Network intrusions classification using algorithms such as Support Vector Machine (SVM), Decision Tree, Naive Baye, K-Nearest Neighbor (KNN), Logistic Regression and Random Forest.