Alternatives and similar repositories for ContainerHIDS

Users that are interested in ContainerHIDS are comparing it to the libraries listed below

• ZJU-SEC / AbstractResourceAttack
  This repository is used to analysis the shared resources of different containers
  ☆31Updated last year
• LID-DS / LID-DS
  LID-DS is an intrusion detection data simulation framework.
  ☆55Updated 8 months ago
• seclab-stonybrook / eaudit
  eAudit suite for recording provenance-related system calls on Linux
  ☆17Updated 3 weeks ago
• mimicji / GAINS
  GAINS: Getting stArted wIth biNary analysiS
  ☆31Updated 3 years ago
• jun-zeng / Audit-log-analysis
  Have fun with audit log analysis :)
  ☆153Updated last year
• PKU-ASAL / NoDrop
  ☆17Updated last year
• Icegrave0391 / Palantir
  PalanTír: Optimizing Attack Provenance with Hardware-enhanced System Observability, ACM CCS'22
  ☆24Updated last year
• YuanchengJiang / recipe-benchmark
  Source code of AsiaCCS'22 paper - RecIPE: Revisiting the Evaluation of Memory Error Defenses
  ☆13Updated 2 years ago
• jpope8 / container-escape-dataset
  Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.
  ☆15Updated 3 years ago
• CN-TU / machine-learning-in-ebpf
  This repository contains the code for the paper "A flow-based IDS using Machine Learning in eBPF", Contact: Maximilian Bachl
  ☆109Updated 5 months ago
• PKU-ASAL / Simulated-Data
  ☆85Updated 11 months ago
• seclab-ucr / Themis
  Themis: Ambiguity-Aware Network Intrusion Detection based on Symbolic Model Comparison
  ☆23Updated 2 years ago
• CamFlow / camflow-dev
  Generates kernel patch for CamFlow Linux Provenance Capture.
  ☆30Updated 2 years ago
• a101e-lab / IoTFuzzBench
  ☆18Updated 2 years ago
• ZJU-SEC / TensorAbuse
  TensorFlow API analysis tool and malicious model detection tool
  ☆39Updated 8 months ago
• dhl123 / Leonard
  Usenix Security'23
  ☆16Updated 2 years ago
• Hustcw / VulBench
  This is a benchmark for evaluating the vulnerability discovery ability of automated approaches including Large Language Models (LLMs), de…
  ☆75Updated last year
• saBPF-project / sabpf-kernel
  ☆28Updated 4 years ago
• ymirsky / VulChecker
  A deep learning model for localizing bugs in C/C++ source code (USENIX'23)
  ☆156Updated 2 years ago
• darpa-i2o / Transparent-Computing
  Material from the DARPA Transparent Computing Program
  ☆224Updated 5 years ago
• tfjmp / provenance-papers
  ☆102Updated 5 years ago
• a18499 / KubAnomaly_DataSet
  dataSet for kubAnomaly model
  ☆20Updated 2 years ago
• HNUSystemsLab / DongTing
  ☆21Updated last year
• syssec-utd / provninja
  Evading Provenance-Based ML Detectors with Adversarial System Actions
  ☆35Updated last year
• ZJU-SEC / Readings
  ☆61Updated 3 years ago
• IoTAccessControl / RapidPatch
  A general cross-architecture C/C++ hotpatch solution using customized userspace eBPF runtime. One patch release can fix the same vulnera…
  ☆27Updated 2 years ago
• CGCL-codes / SCVDT
  Source Code Vulnerability Detection Tools（SCVDT）provides a vulnerable code database, vulnerability detection service for Java and C/C++ p…
  ☆118Updated 4 years ago
• VehicleCyberSec / CarVal
  ☆26Updated 2 years ago
• dherath / CFGExplainer
  [code] "CFGExplainer: Explaining Graph Neural Network-Based Malware Classification from Control Flow Graphs" by Jerome Dinal Herath, Prit…
  ☆38Updated 3 years ago
• willfindlay / bpfcontain-rs
  BPFContain is a container security daemon for GNU/Linux leveraging the power and safety of eBPF and Rust.
  ☆59Updated 3 years ago