The ZAT Python package supports the processing and analysis of Zeek data with Pandas, scikit-learn, Kafka, and Spark. Install: - pip install zat - pip install zat[pyspark] (includes pyspark library) - pip install zat[all] (include pyarrow, yara-python, and tldextract). Examples of Using ZAT: AWS Data Processing and ML Modeling, SageWorks, Installing on Raspberry Pi. Recent Improvements: Faster/Smaller Pandas Dataframes for large log files, Better Panda Dataframe to Matrix (ndarray) support, Scalable conversion from Zeek logs to Parquet, Vastly improved Spark Dataframe Class, Updated/improved Notebooks, Zeek JSON to DataFrame class. Video Presentation: Data Analysis and Machine Learning with Zeek. Why ZAT? Offloading complex tasks from Zeek for efficient processing of high volume network traffic and enhanced data analysis capabilities.
FEATURES
ALTERNATIVES
StaDynA is a system supporting security app analysis in the presence of dynamic code update features.
FSquaDRA is a tool for detection of repackaged Android applications based on Jaccard similarity computation over digests of files.
Python tool for monitoring user-select APIs in Android apps using Frida.
StringSifter is a machine learning tool for automatically ranking strings for malware analysis.
An Active Defense framework for detecting and responding to phishing attacks in Office 365 Message Trace logs.
A free and open platform for detecting and preventing email attacks like BEC, malware, and credential phishing, utilizing Message Query Language (MQL) for behavior description.
Altoro Mutual offers online banking, real estate financing, business credit cards, retirement solutions, and prioritizes privacy and security.
Inspeckage is a dynamic analysis tool for Android applications offering insights into app behavior and real-time monitoring capabilities.
PINNED
Fabric Platform by BlackStork
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Mandos Brief Newsletter
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
Wiz
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.