intrusion-detection

There are 79 repositories under intrusion-detection topic.

• osquery / osquery

  SQL powered operating system instrumentation, monitoring, and analytics.

  hacktoberfestintrusion-detectionmonitoringsecuritysql
  Language:C++ 22856

• fail2ban / fail2ban

  Daemon to ban hosts that cause multiple authentication errors

  anti-botattack-preventionban-hostsban-managementbsdfail2bangplv2hidsidsintrusion-detectionintrusion-preventionipslinuxloganalyzermacosmonitoringpythonsecuritysecurity-tools
  Language:Python 15913

• stamparm / maltrail

  Malicious traffic detection system

  attack-detectionintrusion-detectionmalwarenetwork-monitoringpythonsecuritysensor
  Language:Python 7689
• WatchYourLAN

  aceberg / WatchYourLAN

  Lightweight network IP scanner written in Go. With notifications, history, export to Grafana

  arp-scanarp-scannerintrusion-detectionmonitoringnetwork-securityself-hostedselfhosted
  Language:Go 6513
• NetAlertX

  jokob-sk / NetAlertX

  Network intruder and presence detector. Scans for devices connected to your network and alerts you if new and unknown devices are found.

  dockernetwork-securityselfhostedwifi-networkwifi-securityarp-scanintrusion-detectionpi-holesecuritynetwork-analysisnetworkingipamnetwork-monitoring
  Language:JavaScript 5014

• ossec / ossec-hids

  OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

  compliancefile-integrity-managementfimhidsintrusion-detectionloganalyzernist800-53ossecpci-dsspolicy-monitoringsecurity
  Language:C 4894

• Security-Onion-Solutions / security-onion

  Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

  dfirhuntingidsintrusion-detectionlog-managementnetwork-security-monitoringnsm
  3103
• teler

  teler-sh / teler

  Real-time HTTP Intrusion Detection

  analyze-logsgogolangidsintrusionintrusion-detectionintrusion-detection-systemiocsloglog-analyzerlogsthreatthreat-analyzerthreat-huntingthreat-intelligencethreat-rules
  Language:Go 3070
• Digital-Forensics-Guide

  mikeroyal / Digital-Forensics-Guide

  Digital Forensics Guide. Learn all about Digital Forensics, Computer Forensics, Mobile device Forensics, Network Forensics, and Database Forensics.

  alertingcyber-securitydetection-engineeringdfirdigital-forensicsdigitalforensicreadinessdigitalforensicsforensic-analysisforensicsforensics-investigationsforensics-toolsintrusion-detectionmitre-attacknetwork-securityoffensive-securityosintport-scanningsecuritysiemthreat-intelligence
  Language:Python 2315

• pucherot / Pi.Alert

  WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

  wifilanidsscannetworkintrusion-detectionsecuritypi-holednsmasqarp-scanadminltemac-address
  Language:JavaScript 2231

• ysrc / yulong-hids-archived

  [archived] 一款实验性质的主机入侵检测系统

  hidsintrusion-detection
  Language:Go 2186
• IPBan

  DigitalRuby / IPBan

  Since 2011, IPBan is the worlds most trusted, free security software to block hackers and botnets. With both Windows and Linux support, IPBan has your dedicated or cloud server protected. Upgrade to IPBan Pro today and get a discount. Learn more at ↓

  rdpwindowsipbansecurityremote-desktopintruderfirewallservicefreeremotedesktoplinuxbotnetsfail2banhackersintrusion-detectionintrusion-preventionsecuresshserver
  Language:C# 1921
• acra

  cossacklabs / acra

  Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.

  encryption-serverencryptioncryptocryptographysecurityintrusion-detectiondatabasesgolangdjangopython3phpdatabase-proxyhoneypot
  Language:Go 1435

• alphasoc / flightsim

  A utility to safely generate malicious network traffic patterns and evaluate controls.

  intrusion-detectionmonitoringsecuritytesting-tools
  Language:Go 1336
• Open-Source-Security-Guide

  mikeroyal / Open-Source-Security-Guide

  Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.

  vulnerabilitiesvulnerability-detectionprivacy-protectionpentestersnetwork-analysisintrusion-detectioninfosecincident-managementmitre-attackdetection-engineeringkali-linuxoffensive-securityinformation-securitysiemcompliancecyber-securityscanning-toolincident-responseforensics-toolssurveillance
  Language:Go 1021

• wazuh / wazuh-docker

  Wazuh - Docker containers

  wazuhdockerossecsecurityloganalyzercompliancemonitoringintrusion-detectionpolicy-monitoringelasticsearchsecurity-hardeninglog-analysisidspci-dssfile-integrity-managementsecurity-awarenessvulnerability-detectionincident-responsehacktoberfesthacktoberfest-accepted
  Language:Shell 954
• MIDAS

  Stream-AD / MIDAS

  Anomaly Detection on Dynamic (time-evolving) Graphs in Real-time and Streaming manner. Detecting intrusions (DoS and DDoS attacks), frauds, fake rating anomalies.

  anomaly-detectionfraud-detectiondenial-of-serviceintrusion-detectionaaai2020
  Language:C++ 777

• vinayakumarr / Network-Intrusion-Detection

  Network Intrusion Detection KDDCup '99', NSL-KDD and UNSW-NB15

  cybersecuritydeep-learningintrusion-detectionkdd99machine-learningnetwork-intrusion-detectionnetwork-securitynsl-kddunsw-nb15
  Language:Python 756
• picosnitch

  elesiuta / picosnitch

  Monitor Network Traffic Per Executable, Beautifully Visualized

  networkingsecuritymonitoringprivacyintrusion-detectionbandwidth-monitornetwork-monitornetwork-monitoringnetwork-trafficnetwork-visualizationlinuxnetwork-analysisplotlyebpf
  Language:Python 749

• EBWi11 / AgentSmith-HIDS

  By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.

  hidssecurityintrusion-detectiondetect-porcess-injectiondns-query-hookkprobescreate-file-hookconnect-hookexecve-hookload-lkm-hookanti-rootkit
  604

• Western-OC2-Lab / Intrusion-Detection-System-Using-Machine-Learning

  Code for IDS-ML: intrusion detection system development using machine learning algorithms (Decision tree, random forest, extra trees, XGBoost, stacking, k-means, Bayesian optimization..)

  autonomous-vehiclesbayesian-optimizationcatboostcicids2017cyber-securitydecision-treeensemble-learninghpohyperparameter-optimizationintrusion-detectionintrusion-detection-systemkmeanslightgbmmachine-learningnetwork-securitypython-examplesrandom-foreststackingxgboost
  Language:Jupyter Notebook 539

• wazuh / wazuh-ruleset

  Wazuh - Ruleset

  wazuhossecsecurityloganalyzercompliancemonitoringintrusion-detectionpolicy-monitoringelasticsearchopenscapsecurity-hardeningidspci-dssfile-integrity-managementsecurity-awarenesslog-analysisvulnerability-detectionincident-response
  Language:Python 489

• wazuh / wazuh-dashboard-plugins

  Plugins for Wazuh Dashboard

  wazuhossecsecurityloganalyzercompliancemonitoringintrusion-detectionpolicy-monitoringopenscapsecurity-hardeningidspci-dssfile-integrity-managementsecurity-awarenesslog-analysisvulnerability-detectionincident-responsegdpropensearch-dashboardsopensearch-plugins
  Language:TypeScript 487

• activecm / rita

  Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis.

  beaconsblue-teamc2command-and-controlcyber-securitynetwork-traffic-analysisthreat-huntingzeeklog-analysisanomaly-detectionincident-responsenetwork-monitoringthreat-intelligenceintrusion-detectionsecurity-toolsc2-detection
  Language:Go 410

• mrash / psad

  psad: Intrusion Detection and Log Analysis with iptables

  intrusion-detectioniptableslog-analysissnortmirai-botiptables-logsfirewall
  Language:Perl 410

• wazuh / wazuh-ansible

  Wazuh - Ansible playbook

  wazuhansibleossecsecurityloganalyzercompliancemonitoringintrusion-detectionpolicy-monitoringelasticsearchsecurity-hardeningidspci-dssfile-integrity-managementsecurity-awarenesslog-analysisvulnerability-detectionincident-responsehacktoberfesthacktoberfest-accepted
  Language:Jinja 377

• jasonish / py-idstools

  idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

  idsintrusion-detectionsnortsuricataunified2
  Language:Python 282

• selimfirat / pysad

  Streaming Anomaly Detection Framework in Python (Outlier Detection for Streaming Data)

  anomaly-detectionoutlier-detectionincremental-learningstreaming-dataanomalypythonmachine-learningoutliersunsupervised-learningreal-timeintrusion-detectionfraud-detection
  Language:Python 282

• ANSSI-FR / SecuML

  Machine Learning for Computer Security

  machine-learningintrusion-detectioninteractive-machine-learningactive-learningrare-category-detectionmalware-detectiongui
  Language:Python 279

• enygma / expose

  An Intrusion Detection System library loosely based on PHP IDS

  intrusion-detectionphpphpidssecurity
  Language:PHP 265

• trailofbits / osquery-extensions

  osquery extensions by Trail of Bits

  securitymonitoringintrusion-detectionsqlosquery
  Language:C 264

• stamparm / blackbook

  Blackbook of malware domains

  domainsintrusion-detectionmalware-detectionnetwork-forensicsnetwork-monitoringsecuritythreats
  261

• Billy1900 / Awesome-AI-for-cybersecurity

  Awesome list of AI for cybersecurity including network (network traffic analysis and intrusion detection), endpoint (anti-malware), application (WAF or database firewalls), user (UBA), process behavior (anti-fraud).

  machine-learningintrusion-detectionfirewallanti-spamanti-malware
  231

• wazuh / wazuh-documentation

  Wazuh - Project documentation

  compliancedocumentationelasticsearchfile-integrity-managementfimincident-responseintrusion-detectionlog-analysisloganalyzermonitoringopenscapossecpci-dssreferencesecuritysecurity-awarenesssecurity-hardeningvulnerability-detectionwazuh
  Language:JavaScript 230

• g3tsyst3m / BriarIDS

  An All-In-One home intrusion detection system (IDS) solution for the Raspberry PI.

  brointernetofthingsintrusion-detectioniotmonitorraspberry-piraspberrypiraspbiansecurityonionsuricata
  Language:Python 225
• dnxfirewall

  DOWRIGHTTV / dnxfirewall

  DNXFIREWALL® and DAD'S NEXT-GEN FIREWALL™, a C/CPython hybrid next generation firewall built on top of Linux and bound to kernel/ netfilter hooks for packet control.

  antivirusdns-over-tlsfirewallintrusion-detectionintrusion-preventionnetworkingprivacyroutingsecuritysecurity-toolssyslogtraffic-analysis
  Language:Python 219