Alternatives and similar repositories for ovaldi

Users that are interested in ovaldi are comparing it to the libraries listed below

• ggrandes-clones / pmon
  Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)
  ☆31Updated 3 years ago
• Cherishao / APT-Sample
  Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.
  ☆174Updated last year
• al0ne / suricata_optimize
  Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置
  ☆144Updated 6 years ago
• PowerLZY / Bold-Falcon
  毕方智能云沙箱(Bold-Falcon)是一个开源的自动化恶意软件分析系统;
  ☆156Updated 2 years ago
• Ryuchen / Panda-Sandbox
  这是一个基于 Cuckoo 开源版本的沙箱的修订版本, 该版本完全为了适配国内软件环境所打造
  ☆79Updated 2 years ago
• QAX-A-Team / ptrace
  a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数，避开基于execve系统调用监控的命令日志
  ☆245Updated 6 years ago
• G4rb3n / Script-Ganker
  恶意脚本检测分类工具
  ☆40Updated 5 years ago
• Onils / psaudit
  通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。
  ☆13Updated 6 years ago
• NomadCN112 / Chinese-translation-ATT-CK-framework
  ATT&CK 框架图中文翻译版 原为安恒奖品，自我二次翻译，修改了一些小的翻译错误问题，自我保存即可
  ☆263Updated 6 years ago
• NewBee119 / check_ip
  check_IP is to judge whether a IP is malicious based on open threat intelligence，基于开源威胁情报AlienVault，排查IP地址及域名的恶意性
  ☆53Updated 7 years ago
• zhanghaoyil / seesaw
  Automatic reversed shell detecting and defensing
  ☆52Updated 7 years ago
• Sep0lkit / Blog
  Sep0lkit's Blog
  ☆15Updated 5 years ago
• lengjibo / ATT-CK-CN
  ATT&CK实操
  ☆373Updated 6 years ago
• Cherishao / Analysis-Tools
  恶意软件分析套件
  ☆18Updated 8 years ago
• pandazheng / SecuritySite
  收集了一些安全公司的博客
  ☆147Updated 6 years ago
• donot-wong / SecAcademic
  记录我的安全学术学习
  ☆129Updated 5 years ago
• chriskaliX / Hades
  Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
  ☆305Updated last year
• grayddq / HIDS
  HIDS全称是Host-based Intrusion Detection System，即基于主机型入侵检测系统，HIDS运行依赖这样一个原理：一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成：一部分…
  ☆106Updated 8 years ago
• 404notf0und / CVE-Flow
  CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送
  ☆175Updated 2 years ago
• peter-cui1221 / sqlinjection-detect
  SQL injection detection engine built on of SQL tokenizing and syntax analysis written in C
  ☆60Updated 5 years ago
• driverxdw / Felicia
  HIDS/EDR Demo
  ☆15Updated 5 years ago
• K0rz3n / PatchesTester
  Used to detect patch information that has not been installed on the Windows system and outputs it to a file in order of specified severit…
  ☆91Updated 5 months ago
• promisechen / suricata
  suricata源码分析和读书笔记
  ☆23Updated 8 years ago
• hi-KK / ICS-Protocol-identify
  Using nmap NSE scripts for identifying common ICS protocols[使用nmap的nse脚本对常见工控协议进行识别，附对应nse脚本，并记录pcap流量]
  ☆153Updated 5 years ago
• Yeti-791 / APT-Guide
  APT学习指南（Advanced persistent threat learning Guide）
  ☆221Updated 4 years ago
• EBWi11 / AgentSmith-HIDS
  By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.
  ☆604Updated 4 years ago
• pandazheng / Threat-Intelligence-Analyst
  威胁情报，恶意样本分析，开源Malware代码收集
  ☆349Updated 6 years ago
• RF-CTI / SANS-summit
  ☆30Updated 2 years ago
• u2400 / libc_hook_demo
  一个HIDS agent端的demo
  ☆17Updated 5 years ago
• hi-WenR0 / MLCheckWebshell
  ☆106Updated 7 years ago