Asbatel / ContainerHIDSLinks
Contextualizing System Calls in Containers for Anomaly-Based Intrusion Detection - CCSW'22
☆24Updated 2 years ago
Alternatives and similar repositories for ContainerHIDS
Users that are interested in ContainerHIDS are comparing it to the libraries listed below
Sorting:
- This repository is used to analysis the shared resources of different containers☆30Updated 10 months ago
- ☆16Updated last year
- eAudit suite for recording provenance-related system calls on Linux☆13Updated last year
- Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.☆14Updated 3 years ago
- LID-DS is an intrusion detection data simulation framework.☆51Updated 4 months ago
- PalanTír: Optimizing Attack Provenance with Hardware-enhanced System Observability, ACM CCS'22☆23Updated 10 months ago
- Have fun with audit log analysis :)☆152Updated last year
- GAINS: Getting stArted wIth biNary analysiS☆31Updated 3 years ago
- Source code of AsiaCCS'22 paper - RecIPE: Revisiting the Evaluation of Memory Error Defenses☆13Updated 2 years ago
- Usenix Security'23☆16Updated 2 years ago
- ☆73Updated 6 months ago
- This repository contains the code for the paper "A flow-based IDS using Machine Learning in eBPF", Contact: Maximilian Bachl☆104Updated last month
- Generates kernel patch for CamFlow Linux Provenance Capture.☆27Updated last year
- ☆28Updated 3 years ago
- A general cross-architecture C/C++ hotpatch solution using customized userspace eBPF runtime. One patch release can fix the same vulnera…☆26Updated last year
- ☆101Updated 4 years ago
- For paper Container-IMA: https://www.usenix.org/system/files/raid2019-luo.pdf☆11Updated 5 years ago
- Code for "MalGraph: Hierarchical Graph Neural Networks for Robust Windows Malware Detection"☆47Updated 3 years ago
- TensorFlow API analysis tool and malicious model detection tool☆34Updated 3 months ago
- Flow Interaction Graph based attack traffic detection system.☆169Updated last year
- Themis: Ambiguity-Aware Network Intrusion Detection based on Symbolic Model Comparison☆23Updated 2 years ago
- KernJC: Automated Vulnerable Environment Generation for Linux Kernel Vulnerabilities | 🏆 Best Practical Paper Award of RAID 2024☆71Updated 2 months ago
- A curated list of malware-related papers.☆32Updated last year
- ATLAS: A Sequence-based Learning Approach for Attack Investigation☆167Updated 3 years ago
- This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…☆72Updated 10 months ago
- ☆61Updated 3 years ago
- An implementation of the paper "ELF-Miner: Using Structural Knowledge and Data Mining Methods To Detect New (Linux) Malicious Executables…☆15Updated 6 years ago
- Official Repository of "Robust Malware Classification via Deep Graph Networks on Call Graph Topologies" (ESANN 2021)☆14Updated 2 years ago
- API2Vec: Learning Representations of API Sequences for Malware Detection☆12Updated last year
- Evading Provenance-Based ML Detectors with Adversarial System Actions☆33Updated last year