Alternatives and similar repositories for camflow-dev

Users that are interested in camflow-dev are comparing it to the libraries listed below

• seclab-stonybrook / eaudit
  eAudit suite for recording provenance-related system calls on Linux
  ☆15Updated 3 weeks ago
• ashish-gehani / SPADE
  SPADE: Support for Provenance Auditing in Distributed Environments
  ☆191Updated last month
• jun-zeng / Audit-log-analysis
  Have fun with audit log analysis :)
  ☆153Updated last year
• tfjmp / provenance-papers
  ☆102Updated 5 years ago
• darpa-i2o / Transparent-Computing
  Material from the DARPA Transparent Computing Program
  ☆224Updated 5 years ago
• omid-s / cyber_deception
  ☆14Updated 4 years ago
• mimicji / GAINS
  GAINS: Getting stArted wIth biNary analysiS
  ☆31Updated 3 years ago
• crimson-unicorn / analyzer
  GraphChi's C++ version. Big Data - small machine.
  ☆17Updated 5 years ago
• Asbatel / ContainerHIDS
  Contextualizing System Calls in Containers for Anomaly-Based Intrusion Detection (CHIDS) - CCSW'22
  ☆26Updated 2 years ago
• jun-zeng / ShadeWatcher
  SHADEWATCHER: Recommendation-guided Cyber Threat Analysis using System Audit Records, Oakland'22
  ☆83Updated 2 years ago
• Icegrave0391 / Palantir
  PalanTír: Optimizing Attack Provenance with Hardware-enhanced System Observability, ACM CCS'22
  ☆24Updated last year
• jallen89 / theia-cdm-samples
  ☆11Updated 6 years ago
• sbustreamspot / sbustreamspot-data
  Datasets used in the StreamSpot experiments
  ☆66Updated 9 years ago
• ZJU-SEC / AbstractResourceAttack
  This repository is used to analysis the shared resources of different containers
  ☆31Updated last year
• saBPF-project / sabpf-kernel
  ☆28Updated 4 years ago
• PKU-ASAL / Simulated-Data
  ☆85Updated 11 months ago
• ieeesp2021sub / depcomm
  ☆27Updated 4 years ago
• purseclab / ATLAS
  ATLAS: A Sequence-based Learning Approach for Attack Investigation
  ☆176Updated 3 years ago
• dhl123 / Leonard
  Usenix Security'23
  ☆16Updated 2 years ago
• sepses / Krystal
  KRYSTAL: Knowledge Graph-based Framework for Tactical Attack Discovery in Audit Data
  ☆40Updated last year
• usenixsub / DepImpact
  ☆20Updated 5 years ago
• crimson-unicorn / modeler
  ☆24Updated 5 years ago
• tfjmp / xanthus
  System traces dataset generation tool.
  ☆13Updated 3 years ago
• LID-DS / LID-DS
  LID-DS is an intrusion detection data simulation framework.
  ☆55Updated 8 months ago
• MHunt-er / Benchmarking-Malware-Family-Classification
  ☆16Updated 4 years ago
• Thijsvanede / DeepCASE
  Original implementation and resources of DeepCASE as in the S&P '22 paper
  ☆98Updated 2 years ago
• evandowning / deepreflect
  Discovering Malicious Functionality through Binary Reconstruction
  ☆59Updated 4 years ago
• IoTAccessControl / RapidPatch
  A general cross-architecture C/C++ hotpatch solution using customized userspace eBPF runtime. One patch release can fix the same vulnera…
  ☆27Updated 2 years ago
• jpope8 / container-escape-dataset
  Dataset from Linux Raspian VMs and devices with auditd logs capturing various container escape and attacks.
  ☆15Updated 3 years ago
• syssec-utd / provninja
  Evading Provenance-Based ML Detectors with Adversarial System Actions
  ☆35Updated last year