GitHub topics: hids
gojue/ebpfmanager
A golang ebpf libary based on cilium/ebpf and datadog/ebpf.
Language: Go - Size: 279 KB - Last synced at: about 13 hours ago - Pushed at: about 2 months ago - Stars: 331 - Forks: 50
bytedance/Elkeid
Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.
Language: Go - Size: 66.1 MB - Last synced at: 1 day ago - Pushed at: 2 days ago - Stars: 2,404 - Forks: 448
fail2ban/fail2ban
Daemon to ban hosts that cause multiple authentication errors
Language: Python - Size: 12.6 MB - Last synced at: 2 days ago - Pushed at: 11 days ago - Stars: 14,205 - Forks: 1,316
ossec/ossec-hids
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
Language: C - Size: 19.5 MB - Last synced at: 3 days ago - Pushed at: 4 months ago - Stars: 4,716 - Forks: 1,050
SecAegis/SecAutoBan
恶意IP全自动封禁平台。支持收集如下安全设备告警:长亭WAF社区版(SafeLine)、微步蜜罐HFish、奇安信天眼、奇安信椒图、绿盟WAF、科来网络安全分析审计系统。支持如下设备联动封禁:RouterOS、OPNsense、CheckPoint、旁路阻断(无需设备配合)、奇安信防火墙
Language: Python - Size: 44.1 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 179 - Forks: 36
dafneb/ansible-role-ubuntu24-aide
Ansible Role - Installation of AIDE on Ubuntu 24
Language: Jinja - Size: 22.5 KB - Last synced at: 16 days ago - Pushed at: 16 days ago - Stars: 0 - Forks: 0
ait-aecid/logdata-anomaly-miner
This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.
Language: Python - Size: 50.5 MB - Last synced at: 18 days ago - Pushed at: 18 days ago - Stars: 81 - Forks: 24
chriskaliX/Hades
Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
Language: C - Size: 18.3 MB - Last synced at: about 3 hours ago - Pushed at: 6 months ago - Stars: 292 - Forks: 53
theSecHunter/Hades-Windows
Hades HIDS/HIPS for Windows
Language: C++ - Size: 484 MB - Last synced at: about 1 month ago - Pushed at: about 1 month ago - Stars: 278 - Forks: 92
gojue/ehids-agent
A Linux Host-based Intrusion Detection System based on eBPF.
Language: C - Size: 9.12 MB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 438 - Forks: 82
ait-aecid/aecid-alert-aggregation
A method for grouping, clustering, and merging semi-structured alerts
Language: Python - Size: 4.05 MB - Last synced at: about 1 month ago - Pushed at: 6 months ago - Stars: 23 - Forks: 5
kc-codes/Next-Generation-SIEM-Stack
🚀 Next Generation SIEM Stack is an advanced Security Information and Event Management (SIEM) solution designed for real-time threat detection, analysis, and automated response. This project integrates Wazuh, Suricata IDS, and VirusTotal API to provide a proactive cybersecurity monitoring framework.
Language: Jupyter Notebook - Size: 729 KB - Last synced at: about 2 months ago - Pushed at: about 2 months ago - Stars: 0 - Forks: 0
cedricbonhomme/pyHIDS
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
Language: Python - Size: 758 KB - Last synced at: about 1 month ago - Pushed at: 3 months ago - Stars: 58 - Forks: 15
ait-aecid/kyoushi-environment
Scripts to deploy virtual testbed for log data analysis and anomaly detection.
Language: Jinja - Size: 8.35 MB - Last synced at: about 1 month ago - Pushed at: over 1 year ago - Stars: 23 - Forks: 5
EBWi11/AgentSmith-HIDS 📦
By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.
Size: 42.6 MB - Last synced at: about 1 month ago - Pushed at: about 4 years ago - Stars: 594 - Forks: 165
ait-aecid/rootkit-detection-ebpf-time-trace
Detection of rootkit file hiding activities through analysis of shifts in kernel function execution times.
Language: Python - Size: 182 KB - Last synced at: about 1 month ago - Pushed at: 2 months ago - Stars: 4 - Forks: 1
njcx/RuleCat
GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测
Language: Go - Size: 92.8 KB - Last synced at: 3 months ago - Pushed at: 3 months ago - Stars: 76 - Forks: 21
libellux/Libellux-Up-and-Running
Install open-source software from source to focus on Zero Trust Network principles, enhancing security for existing applications, and deploying tools for threat detection and prevention.
Size: 261 MB - Last synced at: 3 months ago - Pushed at: 4 months ago - Stars: 66 - Forks: 28
leonjza/golert
🚨an osquery powered, almost cross platform HIDS
Language: Go - Size: 26.4 KB - Last synced at: about 1 month ago - Pushed at: over 6 years ago - Stars: 10 - Forks: 4
cdpxe/KSPIDS
A kernel-based IDS for Linux. KSPIDS monitors especially system calls.
Size: 24.4 KB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 2 - Forks: 1
cdpxe/OpenBSDhacks
Some of my security-related coding projects for OpenBSD: A kernel-based user-profile intrusion detection system (FUPIDS) and an ICMP-based "port-knocking" service (openportd).
Language: HTML - Size: 57.6 KB - Last synced at: about 1 month ago - Pushed at: 8 months ago - Stars: 5 - Forks: 1
leo-arch/sids
A lightweight and simple HIDS (Host-based Intrusion Detection System) written in Bash
Language: Shell - Size: 2.03 MB - Last synced at: 11 months ago - Pushed at: over 4 years ago - Stars: 4 - Forks: 2
ysrc/yulong-hids-archived 📦
[archived] 一款实验性质的主机入侵检测系统
Language: Go - Size: 9.39 MB - Last synced at: about 1 year ago - Pushed at: almost 5 years ago - Stars: 2,134 - Forks: 580
m-onz/mzek-poirot
A file integrity and entropy monitoring tool
Language: JavaScript - Size: 11.2 MB - Last synced at: 24 days ago - Pushed at: over 3 years ago - Stars: 1 - Forks: 0
githubfoam/zeek-sandbox
zeek network security monitoring NIDS HIDS
Language: Ruby - Size: 68.4 KB - Last synced at: about 2 months ago - Pushed at: over 4 years ago - Stars: 2 - Forks: 0
goldstrike77/ansible-role-linux-wazuh
Ansible role for install and configure Wazuh manager on Linux operating system.
Language: Jinja - Size: 10.3 MB - Last synced at: 11 days ago - Pushed at: about 4 years ago - Stars: 5 - Forks: 1
US-SSII/SecureStorage-HIDS
A basic HIDS implementation.
Language: Python - Size: 14 MB - Last synced at: about 1 year ago - Pushed at: about 1 year ago - Stars: 0 - Forks: 0
GSA/laptop-management
ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems
Language: Shell - Size: 458 KB - Last synced at: 1 day ago - Pushed at: over 7 years ago - Stars: 16 - Forks: 7
huoji120/safe_duck
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
Language: C - Size: 2.54 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 0
k4yt3x/defense-matrix 📦
Express security essentials deployment for Linux Servers
Language: Python - Size: 97.7 KB - Last synced at: 10 months ago - Pushed at: over 4 years ago - Stars: 59 - Forks: 20
pgalandev/pyHIDS
PAI 1. Sistema de detección de instrusos (HIDS).
Language: Python - Size: 76.5 MB - Last synced at: over 1 year ago - Pushed at: over 2 years ago - Stars: 0 - Forks: 2
gfolga/ansible-role-ossec-wazuh Fork of antoniobarbaro/ansible-role-ossec-wazuh
Language: Shell - Size: 14.6 KB - Last synced at: almost 2 years ago - Pushed at: about 8 years ago - Stars: 4 - Forks: 0
vehanmr/TrueIDS-Desktop-Application
Host-Based Intrusion Detection System
Language: Python - Size: 568 KB - Last synced at: almost 2 years ago - Pushed at: almost 2 years ago - Stars: 0 - Forks: 0
vitalinarh/device_behaviour_monitoring
Language: Python - Size: 4.93 MB - Last synced at: about 2 years ago - Pushed at: about 2 years ago - Stars: 0 - Forks: 0
njcx/Artemis_HIDS
使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。
Language: Go - Size: 14.3 MB - Last synced at: about 2 years ago - Pushed at: almost 4 years ago - Stars: 14 - Forks: 10
cgzones/ctguard
small hids
Language: C++ - Size: 686 KB - Last synced at: about 2 months ago - Pushed at: over 4 years ago - Stars: 4 - Forks: 0
githubfoam/openvas-sandbox
openvas network security monitoring NIDS HIDS
Language: Jinja - Size: 50.8 KB - Last synced at: about 2 months ago - Pushed at: over 3 years ago - Stars: 0 - Forks: 0
blairjames/claymore
Lightweight file integrity based - Host Intrusion Detection System (HIDS) built in pure Python3. Recursively enumerates directories, stores hashes of files, detects and logs file modifications.
Language: Python - Size: 14.6 KB - Last synced at: about 2 years ago - Pushed at: over 5 years ago - Stars: 3 - Forks: 0
Bernardi-Luca/crowdstrikeFalconAlarm
Language: Python - Size: 2.93 KB - Last synced at: almost 2 years ago - Pushed at: about 4 years ago - Stars: 0 - Forks: 1
githubfoam/suricata-sandbox
network security monitoring NIDS HIDS CTI DFIR
Size: 51.8 KB - Last synced at: about 2 months ago - Pushed at: over 5 years ago - Stars: 1 - Forks: 0
githubfoam/wazuh-sandbox
network security monitoring NIDS HIDS CTI DFIR
Size: 14.6 KB - Last synced at: about 2 months ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 0
githubfoam/samshain-sandbox
samshain HIDS CTI DFIR
Size: 14.6 KB - Last synced at: about 2 months ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 0
githubfoam/snort3-sandbox
network security monitoring NIDS HIDS CTI DFIR
Size: 28.3 KB - Last synced at: about 2 months ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 0
githubfoam/silk-sandbox
network security monitoring NIDS HIDS CTI DFIR
Language: Shell - Size: 27.3 KB - Last synced at: about 2 months ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 0
githubfoam/ossec-sandbox
ossec network security monitoring NIDS HIDS
Size: 25.4 KB - Last synced at: about 2 months ago - Pushed at: over 5 years ago - Stars: 0 - Forks: 0