A kernel-based IDS for Linux. KSPIDS monitors especially system calls.
-
Updated
Sep 12, 2024
A kernel-based IDS for Linux. KSPIDS monitors especially system calls.
Some of my security-related coding projects for OpenBSD: A kernel-based user-profile intrusion detection system (FUPIDS) and an ICMP-based "port-knocking" service (openportd).
Daemon to ban hosts that cause multiple authentication errors
恶意IP全自动封禁平台。支持收集如下安全设备告警:长亭WAF社区版(SafeLine)、微步蜜罐HFish、奇安信天眼、奇安信椒图、绿盟WAF、科来网络安全分析审计系统。支持如下设备联动封禁:RouterOS、OPNsense、CheckPoint、奇安信防火墙、旁路阻断(无需设备配合)
A HIDS (host-based intrusion detection system) for verifying the integrity of a system.
This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.
Install open-source software from source to focus on Zero Trust Network principles, enhancing security for existing applications, and deploying tools for threat detection and prevention.
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
A method for grouping, clustering, and merging semi-structured alerts
A basic HIDS implementation.
A Linux Host-based Intrusion Detection System based on eBPF.
Scripts to deploy virtual testbed for log data analysis and anomaly detection.
Host-Based Intrusion Detection System
Find all the ip adresses that have repeat offenses according to the NGINX access logs.
Add a description, image, and links to the hids topic page so that developers can more easily learn about it.
To associate your repository with the hids topic, visit your repo's landing page and select "manage topics."