Asbatel / ContainerHIDS
Contextualizing System Calls in Containers for Anomaly-Based Intrusion Detection - CCSW'22
☆22Updated last year
Alternatives and similar repositories for ContainerHIDS:
Users that are interested in ContainerHIDS are comparing it to the libraries listed below
- LID-DS is an intrusion detection data simulation framework.☆48Updated 11 months ago
- This repository is used to analysis the shared resources of different containers☆29Updated 5 months ago
- PalanTír: Optimizing Attack Provenance with Hardware-enhanced System Observability, ACM CCS'22☆20Updated 4 months ago
- Have fun with audit log analysis :)☆150Updated 10 months ago
- ☆16Updated 7 months ago
- Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.☆12Updated 2 years ago
- Usenix Security'23☆14Updated 2 years ago
- ☆26Updated 6 months ago
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆67Updated 4 months ago
- KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities (Best Practical Paper Award of RAID 2024)☆51Updated 2 months ago
- The official repository of "GraphSPD: Graph-Based Security Patch Detection with Enriched Code Semantics". The paper will appear in the IE…☆44Updated last year
- Code for "MalGraph: Hierarchical Graph Neural Networks for Robust Windows Malware Detection"☆45Updated 3 years ago
- ☆97Updated 4 years ago
- TensorFlow API analysis tool and malicious model detection tool☆25Updated last month
- Additional code and data for the automated malware generation paper☆12Updated 10 months ago
- This is the official repository for VulHawk.☆69Updated 2 years ago
- Themis: Ambiguity-Aware Network Intrusion Detection based on Symbolic Model Comparison☆21Updated 2 years ago
- [code] "CFGExplainer: Explaining Graph Neural Network-Based Malware Classification from Control Flow Graphs" by Jerome Dinal Herath, Prit…☆34Updated 2 years ago
- An implementation of the paper "ELF-Miner: Using Structural Knowledge and Data Mining Methods To Detect New (Linux) Malicious Executables…☆15Updated 6 years ago
- Evading Provenance-Based ML Detectors with Adversarial System Actions☆31Updated 7 months ago
- Official code of Callee: Recovering Call Graphs for Binaries with Transfer and Contrastive Learning☆38Updated last year
- The public dataset in the paper "PatchDB: A Large-Scale Security Patch Dataset". This paper appears in the 51st Annual IEEE/IFIP Interna…☆40Updated last year
- This repository contains the code for the paper "A flow-based IDS using Machine Learning in eBPF", Contact: Maximilian Bachl☆95Updated 11 months ago
- ☆64Updated last month
- ☆11Updated 10 months ago
- GAINS: Getting stArted wIth biNary analysiS☆30Updated 3 years ago
- ☆61Updated 2 years ago
- eAudit suite for recording provenance-related system calls on Linux☆11Updated last year
- Original implementation and resources of DeepCASE as in the S&P '22 paper☆92Updated last year
- A deep learning model for localizing bugs in C/C++ source code (USENIX'23)☆147Updated last year