Skip to content

sealingtech/DCO_Notebooks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
.ipynb_checkpoints
.ipynb_checkpoints
 
 
logs
logs
 
 
.DS_Store
.DS_Store
 
 
Apache Logs.ipynb
Apache Logs.ipynb
 
 
Archive Sysmon Process-sysmon.ipynb
Archive Sysmon Process-sysmon.ipynb
 
 
README.md
README.md
 
 
STECH DCO data science bsides.pptx
STECH DCO data science bsides.pptx
 
 
Sysmon Export Process.ipynb
Sysmon Export Process.ipynb
 
 
Sysmon Process-brawl.ipynb
Sysmon Process-brawl.ipynb
 
 
Untitled.ipynb
Untitled.ipynb
 
 
Zat DNS Processing.ipynb
Zat DNS Processing.ipynb
 
 
apache-ip-1-plotlysub.html
apache-ip-1-plotlysub.html
 
 
apache-ip-2-plotlysub.html
apache-ip-2-plotlysub.html
 
 
plotlysub.html
plotlysub.html
 
 
sysmon-plotlysub.html
sysmon-plotlysub.html
 
 
zat-plotlysub.html
zat-plotlysub.html
 
 

Repository files navigation

Collection of Public Jupyter notebooks for analyzing DCO logs.

  • Apache Logs looks at a way to analyze Apache logs to find anomalies utilizing unsupervised learning
  • Sysmon Process Brawl looks at Sysmon logs from a Mitre event called "Brawl". The example looks at the various executables launched in an environment
  • ZAT DNS processing looks at subdomain analytics
  • Sysmon Export Process utilizes an export from a system to do analytics

About

No description, website, or topics provided.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

 
 
 

Contributors

Languages