Skip to content
/ Re-POIROT Public

Accelerated subgraph matching on provenance graphs

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

Arnab035/Re-POIROT

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
datasets
datasets
 
 
poirot
poirot
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Re-POIROT

Threat hunting involves identifying the presence of APT vectors in an enterprise organization. Given IOCs in the form of a query graph and a provenance graph, POIROT intends to perform efficient graph matching to identify APTs. This repository contains an implementation of POIROT.

The source code of POIROT and instructions to run it can be obtained by navigating to the poirot/ directory.

The datasets (provenance and query graph files) used for performing experiments in the final project report can be obtained by navigating to the datasets/ directory.

About

Accelerated subgraph matching on provenance graphs

Topics

provenance-analysis subgraph-matching provenance-tracking

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages