├── .gitignore ├── LICENSE ├── README.md ├── bin ├── flare_beacon ├── hextoip ├── iptohex └── ipwhois ├── configs ├── bro.ini ├── ecs.ini ├── elasticsearch.ini ├── selks3.ini └── selks4.ini ├── docs └── source │ └── logo.png ├── flare ├── __init__.py ├── analytics │ ├── __init__.py │ └── command_control.py ├── base │ ├── __init__.py │ └── config.py ├── data │ ├── alexa │ │ ├── subdomains-top1mil.txt │ │ └── top-1m.csv │ ├── common_crawl │ │ └── common-crawl-1m.csv │ ├── majestic │ │ ├── .DS_Store │ │ └── majestic_million.pkl │ ├── misc │ │ ├── dga_domains.txt │ │ └── words.txt │ ├── tld │ │ └── tld_list.pkl │ ├── umbrella │ │ └── top-1m.csv │ └── whoisip │ │ ├── asn_names.pkl │ │ └── ipasn.dat ├── data_science │ ├── __init__.py │ ├── features.py │ └── markov_model.py ├── parsers │ └── __init__.py └── tools │ ├── __init__.py │ ├── alexa.py │ ├── common_crawl.py │ ├── iputils.py │ ├── majestic.py │ ├── tld.py │ ├── umbrella.py │ ├── utils.py │ └── whoisip.py ├── logstash └── flare.conf ├── requirements.txt └── setup.py /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/.gitignore -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/README.md -------------------------------------------------------------------------------- /bin/flare_beacon: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/bin/flare_beacon -------------------------------------------------------------------------------- /bin/hextoip: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/bin/hextoip -------------------------------------------------------------------------------- /bin/iptohex: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/bin/iptohex -------------------------------------------------------------------------------- /bin/ipwhois: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/bin/ipwhois -------------------------------------------------------------------------------- /configs/bro.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/configs/bro.ini -------------------------------------------------------------------------------- /configs/ecs.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/configs/ecs.ini -------------------------------------------------------------------------------- /configs/elasticsearch.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/configs/elasticsearch.ini -------------------------------------------------------------------------------- /configs/selks3.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/configs/selks3.ini -------------------------------------------------------------------------------- /configs/selks4.ini: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/configs/selks4.ini -------------------------------------------------------------------------------- /docs/source/logo.png: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/docs/source/logo.png -------------------------------------------------------------------------------- /flare/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /flare/analytics/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /flare/analytics/command_control.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/analytics/command_control.py -------------------------------------------------------------------------------- /flare/base/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /flare/base/config.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/base/config.py -------------------------------------------------------------------------------- /flare/data/alexa/subdomains-top1mil.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/alexa/subdomains-top1mil.txt -------------------------------------------------------------------------------- /flare/data/alexa/top-1m.csv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/alexa/top-1m.csv -------------------------------------------------------------------------------- /flare/data/common_crawl/common-crawl-1m.csv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/common_crawl/common-crawl-1m.csv -------------------------------------------------------------------------------- /flare/data/majestic/.DS_Store: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/majestic/.DS_Store -------------------------------------------------------------------------------- /flare/data/majestic/majestic_million.pkl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/majestic/majestic_million.pkl -------------------------------------------------------------------------------- /flare/data/misc/dga_domains.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/misc/dga_domains.txt -------------------------------------------------------------------------------- /flare/data/misc/words.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/misc/words.txt -------------------------------------------------------------------------------- /flare/data/tld/tld_list.pkl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/tld/tld_list.pkl -------------------------------------------------------------------------------- /flare/data/umbrella/top-1m.csv: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/umbrella/top-1m.csv -------------------------------------------------------------------------------- /flare/data/whoisip/asn_names.pkl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/whoisip/asn_names.pkl -------------------------------------------------------------------------------- /flare/data/whoisip/ipasn.dat: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data/whoisip/ipasn.dat -------------------------------------------------------------------------------- /flare/data_science/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /flare/data_science/features.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data_science/features.py -------------------------------------------------------------------------------- /flare/data_science/markov_model.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/data_science/markov_model.py -------------------------------------------------------------------------------- /flare/parsers/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /flare/tools/__init__.py: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /flare/tools/alexa.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/alexa.py -------------------------------------------------------------------------------- /flare/tools/common_crawl.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/common_crawl.py -------------------------------------------------------------------------------- /flare/tools/iputils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/iputils.py -------------------------------------------------------------------------------- /flare/tools/majestic.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/majestic.py -------------------------------------------------------------------------------- /flare/tools/tld.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/tld.py -------------------------------------------------------------------------------- /flare/tools/umbrella.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/umbrella.py -------------------------------------------------------------------------------- /flare/tools/utils.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/utils.py -------------------------------------------------------------------------------- /flare/tools/whoisip.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/flare/tools/whoisip.py -------------------------------------------------------------------------------- /logstash/flare.conf: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/logstash/flare.conf -------------------------------------------------------------------------------- /requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/requirements.txt -------------------------------------------------------------------------------- /setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/austin-taylor/flare/HEAD/setup.py --------------------------------------------------------------------------------