Alternatives and similar repositories for camflow-dev

Users that are interested in camflow-dev are comparing it to the libraries listed below

• tfjmp / provenance-papers
  ☆101Updated 4 years ago
• ashish-gehani / SPADE
  SPADE: Support for Provenance Auditing in Distributed Environments
  ☆186Updated last month
• crimson-unicorn / analyzer
  GraphChi's C++ version. Big Data - small machine.
  ☆17Updated 4 years ago
• omid-s / cyber_deception
  ☆14Updated 4 years ago
• jun-zeng / Audit-log-analysis
  Have fun with audit log analysis :)
  ☆152Updated last year
• darpa-i2o / Transparent-Computing
  Material from the DARPA Transparent Computing Program
  ☆207Updated 5 years ago
• mimicji / GAINS
  GAINS: Getting stArted wIth biNary analysiS
  ☆31Updated 3 years ago
• seclab-stonybrook / eaudit
  eAudit suite for recording provenance-related system calls on Linux
  ☆13Updated 2 years ago
• Asbatel / ContainerHIDS
  Contextualizing System Calls in Containers for Anomaly-Based Intrusion Detection (CHIDS) - CCSW'22
  ☆24Updated 2 years ago
• jallen89 / theia-cdm-samples
  ☆11Updated 6 years ago
• Icegrave0391 / Palantir
  PalanTír: Optimizing Attack Provenance with Hardware-enhanced System Observability, ACM CCS'22
  ☆24Updated 11 months ago
• jun-zeng / ShadeWatcher
  SHADEWATCHER: Recommendation-guided Cyber Threat Analysis using System Audit Records, Oakland'22
  ☆82Updated 2 years ago
• saBPF-project / sabpf-kernel
  ☆28Updated 3 years ago
• ZJU-SEC / AbstractResourceAttack
  This repository is used to analysis the shared resources of different containers
  ☆31Updated 11 months ago
• tfjmp / xanthus
  System traces dataset generation tool.
  ☆13Updated 3 years ago
• sbustreamspot / sbustreamspot-data
  Datasets used in the StreamSpot experiments
  ☆61Updated 9 years ago
• PKU-ASAL / Simulated-Data
  ☆72Updated 7 months ago
• purseclab / ATLAS
  ATLAS: A Sequence-based Learning Approach for Attack Investigation
  ☆168Updated 3 years ago
• PKU-ASAL / NoDrop
  ☆16Updated last year
• ksatvat / EXTRACTOR
  ☆82Updated 2 years ago
• LID-DS / LID-DS
  LID-DS is an intrusion detection data simulation framework.
  ☆51Updated 4 months ago
• hasanmdme / decap
  This tool set can generate required capabilities for binaries. A system call to capability mapping is used to assign capability to the bi…
  ☆14Updated 2 years ago
• evandowning / deepreflect
  Discovering Malicious Functionality through Binary Reconstruction
  ☆58Updated 4 years ago
• usenixsub / DepImpact
  ☆20Updated 4 years ago
• crimson-unicorn / core
  ☆15Updated 4 years ago
• yingdongucas / inconsistency_detection
  Towards the Detection of Inconsistencies in Public Security Vulnerability Reports
  ☆75Updated 2 years ago
• syssec-utd / provninja
  Evading Provenance-Based ML Detectors with Adversarial System Actions
  ☆33Updated last year
• Thijsvanede / DeepCASE
  Original implementation and resources of DeepCASE as in the S&P '22 paper
  ☆95Updated 2 years ago
• IoTAccessControl / RapidPatch
  A general cross-architecture C/C++ hotpatch solution using customized userspace eBPF runtime. One patch release can fix the same vulnera…
  ☆26Updated last year
• YuanchengJiang / recipe-benchmark
  Source code of AsiaCCS'22 paper - RecIPE: Revisiting the Evaluation of Memory Error Defenses
  ☆13Updated 2 years ago