/threat_hunting_entropy

Python Example for relative entropy calculation. Based on the work of Red Canary https://redcanary.com/blog/threat-hunting-entropy/

Primary LanguagePython

threat_hunting_entropy

Python code mirror for various entropy calculation. Visit the blog of Red Canary https://redcanary.com/blog/threat-hunting-entropy/ for details.

The various algorithms are stored in a class dictionary so all supported algorithms can be iterated through. See the calculate function for an example.

self.algorithms = {
    'Hartley': self.hartley_entropy,
    'Metric': self.metric_entropy,
    'Relative': self.relative_entropy,
    'Renyi': self.renyi_entropy,
    'Shannon': self.shannon_entropy,
    'Theil': self.theil_index,
    }