Alternatives and similar repositories for ovaldi

Users that are interested in ovaldi are comparing it to the libraries listed below

• ggrandes-clones / pmon
  Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)
  ☆31Updated 3 years ago
• Cherishao / APT-Sample
  Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.
  ☆172Updated last year
• QAX-A-Team / ptrace
  a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数，避开基于execve系统调用监控的命令日志
  ☆242Updated 6 years ago
• al0ne / suricata_optimize
  Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置
  ☆141Updated 5 years ago
• NomadCN112 / Chinese-translation-ATT-CK-framework
  ATT&CK 框架图中文翻译版 原为安恒奖品，自我二次翻译，修改了一些小的翻译错误问题，自我保存即可
  ☆265Updated 5 years ago
• lengjibo / ATT-CK-CN
  ATT&CK实操
  ☆371Updated 5 years ago
• G4rb3n / Script-Ganker
  恶意脚本检测分类工具
  ☆40Updated 4 years ago
• NewBee119 / check_ip
  check_IP is to judge whether a IP is malicious based on open threat intelligence，基于开源威胁情报AlienVault，排查IP地址及域名的恶意性
  ☆52Updated 7 years ago
• Ryuchen / Panda-Sandbox
  这是一个基于 Cuckoo 开源版本的沙箱的修订版本, 该版本完全为了适配国内软件环境所打造
  ☆76Updated 2 years ago
• Sep0lkit / Blog
  Sep0lkit's Blog
  ☆15Updated 5 years ago
• zhanghaoyil / seesaw
  Automatic reversed shell detecting and defensing
  ☆51Updated 6 years ago
• u2400 / libc_hook_demo
  一个HIDS agent端的demo
  ☆17Updated 5 years ago
• pandazheng / SecuritySite
  收集了一些安全公司的博客
  ☆144Updated 6 years ago
• donot-wong / SecAcademic
  记录我的安全学术学习
  ☆129Updated 4 years ago
• 404notf0und / CVE-Flow
  CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送
  ☆174Updated 2 years ago
• grayddq / HIDS
  HIDS全称是Host-based Intrusion Detection System，即基于主机型入侵检测系统，HIDS运行依赖这样一个原理：一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成：一部分…
  ☆107Updated 7 years ago
• EBWi11 / AgentSmith-HIDS
  By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.
  ☆600Updated 4 years ago
• Yeti-791 / APT-Guide
  APT学习指南（Advanced persistent threat learning Guide）
  ☆219Updated 4 years ago
• ReAbout / Datacon2019-WriteUp
  datacon比赛方向三-攻击源与攻击者分析writeup
  ☆93Updated 6 years ago
• tianyulab / Threat_Hunting_with_ELK
  天御攻防实验室 - 威胁猎杀实战系列
  ☆102Updated 6 years ago
• hi-WenR0 / MLCheckWebshell
  ☆106Updated 7 years ago
• K0rz3n / PatchesTester
  用来检测 windows 系统尚未安装的补丁信息，并根据指定的严重等级按顺序输出到文件中,可以作为 Windows 服务器运维人员日常检查更新或者网络安全人员对 Windows 服务器安全检查的有力工具，欢迎师傅们 star 支持。
  ☆91Updated 6 years ago
• Onils / psaudit
  通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。
  ☆13Updated 5 years ago
• xisafe / suricata-rule
  suricata IDS的规则，测试在用的，部分自写的规则视情况放出。
  ☆18Updated 6 years ago
• driverxdw / Felicia
  HIDS/EDR Demo
  ☆15Updated 4 years ago
• euphrat1ca / ICSwiki
  ICSwiki
  ☆26Updated 5 years ago
• TomAPU / WAF-rules
  ☆22Updated 5 years ago
• baronpan / SysmonHunter
  An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal
  ☆202Updated 3 years ago
• Cherishao / Analysis-Tools
  恶意软件分析套件
  ☆18Updated 8 years ago
• chriskaliX / Hades
  Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
  ☆297Updated 8 months ago