hids topic
RuleCat
GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测
Libellux-Up-and-Running
Install open-source software from source to focus on Zero Trust Network principles, enhancing security for existing applications, and deploying tools for threat detection and prevention.
pyHIDS
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
logdata-anomaly-miner
This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable...
laptop-management
ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems
Artemis_HIDS
使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。
safe_duck
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
aecid-alert-aggregation
A method for grouping, clustering, and merging semi-structured alerts
kyoushi-environment
Scripts to deploy virtual testbed for log data analysis and anomaly detection.