OVALInterpreter / ovaldi
OVAL Interpreter
☆12Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for ovaldi
- 恶意脚本检测分类工具☆40Updated 3 years ago
- 一个HIDS agent端的demo☆17Updated 4 years ago
- SQL injection detection engine built on of SQL tokenizing and syntax analysis written in C☆55Updated 4 years ago
- Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)☆31Updated 2 years ago
- ICSwiki☆26Updated 4 years ago
- 基于docker虚拟化的恶意代码沙箱☆71Updated 6 years ago
- ☆30Updated last year
- Sep0lkit's Blog☆15Updated 4 years ago
- suricata源码分析和读书笔记☆24Updated 7 years ago
- a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数,避开基于execve系统调用监控的命令日志☆240Updated 5 years ago
- Automatic reversed shell detecting and defensing☆51Updated 6 years ago
- 使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。☆18Updated 3 years ago
- 天御攻防实验室 - 威胁猎杀实战系列☆102Updated 5 years ago
- 恶意软件分析套件☆18Updated 7 years ago
- 用来检测 windows 系统尚未安装的补丁信息,并根据指定的严重等级按顺序输出到文件中,可以作为 Windows 服务器运维人员日常检查更新或者网络安全人员对 Windows 服务器安全检查的有力工具,欢迎师傅们 star 支持。☆89Updated 5 years ago
- 基于inotify的Linux文件实时监控程序,同时调用河马扫描来检测文件☆22Updated 4 years ago
- 这是一个基于 Cuckoo 开源版本的沙箱的修订版本, 该版本完全为了适配国内软件环境所打造☆76Updated last year
- HIDS全称是Host-based Intrusion Detection System,即基于主机型入侵检测系统,HIDS运行依赖这样一个原理:一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成:一部分…☆101Updated 6 years ago
- 基于行为的Ransomware检测原型☆40Updated 7 years ago
- ☆55Updated 3 years ago
- Peach Fuzzer 3.x☆20Updated 8 years ago
- ☆11Updated 4 years ago
- It can analyse the packets of ICS☆19Updated 6 years ago
- check_IP is to judge whether a IP is malicious based on open threat intelligence,基于开源威胁情报AlienVault,排查IP地址及域名的恶意性☆51Updated 6 years ago
- MSF RPC API调用文档及demo☆54Updated 5 months ago
- Knowledge Base 慢雾安全团队知识库☆29Updated 5 years ago
- ☆51Updated 6 years ago