ids

There are 20 repositories under ids topic.

fail2ban / fail2ban
Daemon to ban hosts that cause multiple authentication errors
anti-bot attack-prevention ban-hosts ban-management bsd fail2ban gplv2 hids ids intrusion-detection intrusion-prevention ips linux loganalyzer macos monitoring python security security-tools
Language:Python 11254
SigmaHQ / sigma
Main Sigma Rule Repository
elasticsearch ids logging monitoring security siem signatures splunk sysmon
Language:Python 7894
hashids
vinkla / hashids
A small PHP library to generate YouTube-like ids from numbers. Use it when you don't want to expose your database ids to the user.
php hashids database-ids php-library encoding hash composer-packages ids
Language:PHP 5227
OISF / suricata
Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.
cybersecurity ids intrusion-detection-system intrusion-prevention-system ips network-monitor network-monitoring nsm security suricata threat-hunting
Language:C 4310
niieani / hashids.js
A small JavaScript library to generate YouTube-like ids from numbers.
database-ids encoding hacktoberfest hash hashids ids javascript node npm-package
Language:TypeScript 4196
Security-Onion-Solutions / security-onion
Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
intrusion-detection network-security-monitoring log-management ids nsm hunting dfir
3056
teler
teler-sh / teler
Real-time HTTP Intrusion Detection
analyze-logs go golang ids intrusion intrusion-detection intrusion-detection-system iocs log log-analyzer logs threat threat-analyzer threat-hunting threat-intelligence threat-rules
Language:Go 2993
pucherot / Pi.Alert
WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices
adminlte arp-scan dnsmasq ids intrusion-detection lan mac-address network pi-hole scan security wifi
Language:JavaScript 1934
StamusNetworks / SELKS
A Suricata based IDS/IPS/NSM distro
suricata network security monitoring management ids ips linux distribution security-monitoring threat-hunting network-intrusion-detection network-security gui user-interface
Language:Shell 1378
nzymedefense / nzyme
Network Defense System.
detection ethernet ids ndr network response security visibility wifi wireless
Language:Java 1376
jenssegers / optimus
🤖 Id obfuscation based on Knuth's multiplicative hashing method for PHP.
obfuscation ids optimus hashids transformations laravel
Language:PHP 1263
shramos / Awesome-Cybersecurity-Datasets
A curated list of amazingly awesome Cybersecurity datasets
attack cybersecurity data dataframe datasets deep deeplearning events ids ips learning logs machinelearning malware security traffic
1260
al0ne / suricata-rules
Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
ids security signatures suricata suricata-rule
1089
0xrawsec / whids
Open Source EDR for Windows
dfir edr ids sysmon threat-hunting windows
Language:Go 1072
bloodzer0 / ossa
Open-Source Security Architecture | 开源安全架构
application-security business-security code-audit ids ips security security-audit security-scanner security-tools security-vulnerability vulnerabilities vulnerability-scanners
930
teris-io / shortid
Super short, fully unique, non-sequential and URL friendly Ids
id ids shortid
Language:Go 929
stratosphereips / StratosphereLinuxIPS
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.
docker pcap machine-learning ai ids zeek ips stratosphere-ips endpoint-protection intrusion-detection-system intrusion-prevention-system network-analysis network-security gsoc-2023 gsoc-2024
Language:Python 673
wazuh / wazuh-docker
Wazuh - Docker containers
wazuh docker ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch security-hardening log-analysis ids pci-dss file-integrity-management security-awareness vulnerability-detection incident-response hacktoberfest hacktoberfest-accepted
Language:Shell 621
wazuh / wazuh-dashboard-plugins
Plugins for Wazuh Dashboard
wazuh ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring openscap security-hardening ids pci-dss file-integrity-management security-awareness log-analysis vulnerability-detection incident-response gdpr opensearch-dashboards opensearch-plugins
Language:TypeScript 415
jasonish / evebox
Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search
ids ips netsec nsm security suricata
Language:Rust 414
wazuh / wazuh-ruleset
Wazuh - Ruleset
compliance elasticsearch file-integrity-management ids incident-response intrusion-detection log-analysis loganalyzer monitoring openscap ossec pci-dss policy-monitoring security security-awareness security-hardening vulnerability-detection wazuh
Language:Python 408
teler-waf
teler-sh / teler-waf
teler-waf is a Go HTTP middleware that protects local web services from OWASP Top 10 threats, known vulnerabilities, malicious actors, botnets, unwanted crawlers, and brute force attacks.
ids teler waf teler-ids teler-waf go golang http middleware router security go-library go-package security-tools
Language:Go 321
jasonish / py-idstools
idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)
ids intrusion-detection snort suricata unified2
Language:Python 270
wazuh / wazuh-ansible
Wazuh - Ansible playbook
wazuh ansible ossec security loganalyzer compliance monitoring intrusion-detection policy-monitoring elasticsearch security-hardening ids pci-dss file-integrity-management security-awareness log-analysis vulnerability-detection incident-response hacktoberfest hacktoberfest-accepted
Language:Jinja 268
tenzir / threatbus
🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.
threat-intelligence threatintel threat-hunting ids zeek misp opencti opencti-connector sightings threat-bus threat-intelligence-data cif3 cif
Language:Python 257
OISF / suricata-update
The tool for updating your Suricata rules.
suricata security ids ips nsm network-monitoring
Language:Python 243
jasonish / docker-suricata
A Suricata Docker image.
container docker ids nsm podman suricata
Language:Shell 237
beave / sagan
** README ** This repo has MOVED to https://github.com/quadrantsec/sagan
security ids ips siem log syslog nsm log-monitoring
230
fox-it / quantuminsert
Quantum Insert
detection ids man-on-the-side pcap python quantum-insert
Language:HTML 213
buildingSMART / IDS
Computer interpretable (XML) standard to define Information Delivery Specifications for BIM (mainly used for IFC)
informationdeliveryspecification ifc industryfoundationclasses openbim buildingsmart ids
Language:C# 192
google / gonids
gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/
suricata parse security-tools network-security network ids
Language:Go 178
cyber-security
alik604 / cyber-security
Machine Learning for Network Intrusion Detection & Misc Cyber Security Utilities
python malware malware-detection unsw-nb15 cyber-security network-intrusion-detection intrusion-detection rainbow-table denial-of-service financial-anomaly-detection kdd kdd99 nsl-kdd unsw pytorch deep-learning ids security anomaly-detection machine-learning
Language:Jupyter Notebook 176
travisbgreen / hunting-rules
Suricata rules for network anomaly detection
suricata-rule suricata ids nsm threat-hunting cybersecurity anomaly-detection cyber-threat-intelligence network-security network-monitoring lateral-movement threat-intelligence
149
UTMFW
sonertari / UTMFW
UTM Firewall on OpenBSD
utm firewall openbsd ssl-inspection sslproxy web-filter anti-virus anti-spam ids ips packet-filter web-ui androdi-ui windows-ui installation-iso pfre notifications utmfw pffw
Language:PHP 141
sschiau / Particle
64 bit ID Generator
php miliseconds ids
Language:PHP 133
blacktop / docker-bro
Bro IDS Dockerfile
bro bro-ids docker elasticsearch ids kafka network-analysis network-monitoring
Language:Zeek 130