hids

There are 8 repositories under hids topic.

fail2ban / fail2ban
Daemon to ban hosts that cause multiple authentication errors
linux macos security intrusion-prevention fail2ban bsd gplv2 python ban-hosts intrusion-detection ids ips anti-bot attack-prevention hids security-tools loganalyzer monitoring ban-management
Language:Python 10631
ossec / ossec-hids
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
compliance file-integrity-management fim hids intrusion-detection loganalyzer nist800-53 ossec pci-dss policy-monitoring security
Language:C 4283
ysrc / yulong-hids-archived
[archived] 一款实验性质的主机入侵检测系统
hids intrusion-detection
Language:Go 2145
bytedance / Elkeid
Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.
hids security rasp edr cwpp linux-security
Language:Go 2112
EBWi11 / AgentSmith-HIDS
By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.
anti-rootkit connect-hook create-file-hook detect-porcess-injection dns-query-hook execve-hook hids intrusion-detection kprobes load-lkm-hook security
588
gojue / ehids-agent
A Linux Host-based Intrusion Detection System based on eBPF.
ebpf ebpf-sec golang hids security-audit
Language:C 382
gojue / ebpfmanager
A golang ebpf libary based on cilium/ebpf and datadog/ebpf.
ebpf golang hids
Language:Go 284
chriskaliX / Hades
Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
agent hids golang ebpf netlink linux ebpf-sec runtime-security security ebpf-programs libbpf rust
Language:C 275
njcx / RuleCat
GO开发而成，用于NIDS HIDS 分析的规则引擎，使用WorkerPool 高性能检测，支持多字段 "和" "或" 检测，支持频率检测
rules-engine rule-engine security nids hids
Language:Go 73
Libellux-Up-and-Running
libellux / Libellux-Up-and-Running
Install open-source software from source to focus on Zero Trust Network principles, enhancing security for existing applications, and deploying tools for threat detection and prevention.
access-control antivirus hids intrusion-detection intrusion-prevention logging monitoring security two-factor-authentication virtual-private-network vulnerability-assessment vulnerability-scanner zero-trust-network
Language:JavaScript 64
logdata-anomaly-miner
ait-aecid / logdata-anomaly-miner
This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.
anomaly anomaly-detection cybersecurity detection hids ids intrusion-detection linux log-analysis logdata logging python security
Language:Python 63
k4yt3x / defense-matrix
Express security essentials deployment for Linux Servers
firewall linux-server scutum security security-tools hids
Language:Python 59
cedricbonhomme / pyHIDS
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
rsa-signature python irc security hids intrusion-detection hashlookup misp yara bloom-filter
Language:Python 49
njcx / Artemis_HIDS
使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构，agent 部分使用go 开发而成，会把采集的数据写入到kafka里面，由后端的规则引擎（go开发而成）消费，配置部分以及agent存活使用etcd。
hids
Language:Go 17
GSA / laptop-management
ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems
alpha osquery fleet management hids
Language:Shell 16
kyoushi-environment
ait-aecid / kyoushi-environment
Scripts to deploy virtual testbed for log data analysis and anomaly detection.
anomaly-detection cyber-attacks data-mining hids ids kyoushi log-data logs monitoring nids security simulation
Language:Jinja 14
huoji120 / safe_duck
一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,
debian firewall hids huoji linux safe-duck
Language:C 14
ait-aecid / aecid-alert-aggregation
A method for grouping, clustering, and merging semi-structured alerts
alerts clustering hids ids json log-data logs machine-learning nids unsupervised alert-aggregation meta-alerts semi-structured similarity intrusion-detection
Language:Python 12
leonjza / golert
🚨an osquery powered, almost cross platform HIDS
hids security monitoring osquery
Language:Go 9
goldstrike77 / ansible-role-linux-wazuh
Ansible role for install and configure Wazuh manager on Linux operating system.
ansible ansible-role ossec hids wazuh security loganalyzer compliance intrusion-detection policy-monitoring security-hardening ids pci-dss file-integrity-management security-awareness log-analysis vulnerability-detection incident-response
Language:Jinja 5
cdpxe / OpenBSDhacks
Some of my security-related coding projects for OpenBSD: A kernel-based user-profile intrusion detection system (FUPIDS) and an ICMP-based "port-knocking" service (openportd).
openbsd security ids port-knocking bsd kernel fupids portknocking hids openbsd-ports openbsd-community openbsd-scripts icmp security-monitoring security-tools security-hardening information-security host-monitoring kernel-module kernel-modules
Language:HTML 4
cgzones / ctguard
small hids
hids debian security intrusion-detection loganalyzer filesystem-changes-monitor
Language:C++ 4
gfolga / ansible-role-ossec-wazuh
hids ossec-server wazuh wazuh-api ossec
Language:Shell 4
leo-arch / sids
A lightweight and simple HIDS (Host-based Intrusion Detection System) written in Bash
bash hids integrity-checker intrusion-detection-system
Language:Shell 4
blairjames / claymore
Lightweight file integrity based - Host Intrusion Detection System (HIDS) built in pure Python3. Recursively enumerates directories, stores hashes of files, detects and logs file modifications.
python python3 hids ips tripwire samhain listcomprehensions
Language:Python 3
cdpxe / KSPIDS
A kernel-based IDS for Linux. KSPIDS monitors especially system calls.
linux kernel ids hids monitoring anomaly-detection host-monitoring linux-security linux-security-module linux-hardening linux-kernel intrusion-detection information-security kernel-hardening kernel-module information-forensics linux-kernel-module security-tools security-hardening user-monitoring
2
githubfoam / zeek-sandbox
zeek network security monitoring NIDS HIDS
zeek network-security-monitoring host-based intrusion-detection-system hids nids network-based digital-forensics-incident-response digital-forensic-readiness cyber-threat-intelligence pipeline
Language:Ruby 2
corearchi / WeiShu-HIDS
WeiShu is An open source HIDS.
security security-audit hids firewall
1
githubfoam / suricata-sandbox
network security monitoring NIDS HIDS CTI DFIR
network-security-monitoring nids hids host-based network-based artificial-intelligence digital-forensics-incident-response digital-forensic-readiness cyber-threat-intelligence
1
m-onz / mzek-poirot
A file integrity and entropy monitoring tool
hids aide tripwire monitoring
Language:JavaScript 1
TobyGiacometti / AnsibleHidsRole
An Ansible role that manages a host-based intrusion detection system.
ansible security hids wazuh ossec
Language:Shell 1
itgroupstl / badactors
Find all the ip adresses that have repeat offenses according to the NGINX access logs.
ids intrusion-detection linux monitoring security hids intrusion-prevention anti-bot attack-prevention ban-hosts ips loganalyzer security-tools ban-management
Language:Shell 0
security-team-2 / pyHIDS
database hids integrity-checker python
Language:Python 0
vehanmr / TrueIDS-Desktop-Application
Host-Based Intrusion Detection System
cybersecurity hids intrusion-detection-system host-based-intrusion-detection-system
Language:Python 0
SecureStorage-HIDS
US-SSII / SecureStorage-HIDS
A basic HIDS implementation.
customtkinter hids loguru neo4j neomodel tcp-socket tkinter
Language:Python
vitalinarh / Host-Intrusion-Detection-System
ids system-calls machine-learning mlp perf analysis-algorithms federated-learning hids
Language:Python