Alternatives and similar repositories for ovaldi

Users that are interested in ovaldi are comparing it to the libraries listed below

• ggrandes-clones / pmon
  Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)
  ☆31Updated 3 years ago
• Cherishao / APT-Sample
  Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.
  ☆173Updated last year
• Ryuchen / Panda-Sandbox
  这是一个基于 Cuckoo 开源版本的沙箱的修订版本, 该版本完全为了适配国内软件环境所打造
  ☆77Updated 2 years ago
• Cherishao / Analysis-Tools
  恶意软件分析套件
  ☆18Updated 8 years ago
• QAX-A-Team / ptrace
  a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数，避开基于execve系统调用监控的命令日志
  ☆242Updated 6 years ago
• G4rb3n / Script-Ganker
  恶意脚本检测分类工具
  ☆40Updated 4 years ago
• NomadCN112 / Chinese-translation-ATT-CK-framework
  ATT&CK 框架图中文翻译版 原为安恒奖品，自我二次翻译，修改了一些小的翻译错误问题，自我保存即可
  ☆265Updated 5 years ago
• pandazheng / SecuritySite
  收集了一些安全公司的博客
  ☆145Updated 6 years ago
• al0ne / suricata_optimize
  Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置
  ☆144Updated 5 years ago
• lengjibo / ATT-CK-CN
  ATT&CK实操
  ☆372Updated 6 years ago
• zhanghaoyil / seesaw
  Automatic reversed shell detecting and defensing
  ☆51Updated 6 years ago
• Yeti-791 / APT-Guide
  APT学习指南（Advanced persistent threat learning Guide）
  ☆219Updated 4 years ago
• NewBee119 / check_ip
  check_IP is to judge whether a IP is malicious based on open threat intelligence，基于开源威胁情报AlienVault，排查IP地址及域名的恶意性
  ☆53Updated 7 years ago
• Sep0lkit / Blog
  Sep0lkit's Blog
  ☆15Updated 5 years ago
• ReAbout / Datacon2019-WriteUp
  datacon比赛方向三-攻击源与攻击者分析writeup
  ☆93Updated 6 years ago
• PowerLZY / Bold-Falcon
  毕方智能云沙箱(Bold-Falcon)是一个开源的自动化恶意软件分析系统;
  ☆150Updated 2 years ago
• pandazheng / Threat-Intelligence-Analyst
  威胁情报，恶意样本分析，开源Malware代码收集
  ☆345Updated 5 years ago
• grayddq / HIDS
  HIDS全称是Host-based Intrusion Detection System，即基于主机型入侵检测系统，HIDS运行依赖这样一个原理：一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成：一部分…
  ☆107Updated 7 years ago
• K0rz3n / PatchesTester
  Used to detect patch information that has not been installed on the Windows system and outputs it to a file in order of specified severit…
  ☆91Updated last month
• tianyulab / Threat_Hunting_with_ELK
  天御攻防实验室 - 威胁猎杀实战系列
  ☆102Updated 6 years ago
• EBWi11 / AgentSmith-HIDS
  By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.
  ☆602Updated 4 years ago
• donot-wong / SecAcademic
  记录我的安全学术学习
  ☆129Updated 4 years ago
• chriskaliX / Hades
  Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)
  ☆297Updated 9 months ago
• 404notf0und / CVE-Flow
  CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送
  ☆175Updated 2 years ago
• mylamour / blog
  Your internal mediocrity is the moment when you lost the faith of being excellent. Just do it.
  ☆62Updated last week
• Wuy1f4n / Sec-Tools-List
  渗透测试中的一些开源工具按照Att&ck 流程进行归类
  ☆76Updated 5 years ago
• driverxdw / Felicia
  HIDS/EDR Demo
  ☆15Updated 4 years ago
• euphrat1ca / ICSwiki
  ICSwiki
  ☆26Updated 5 years ago
• u2400 / libc_hook_demo
  一个HIDS agent端的demo
  ☆17Updated 5 years ago
• njcx / Artemis_HIDS
  使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构，agent 部分使用go 开发而成， 会把采集的数据写入到kafka里面，由后端的规则引擎（go开发而成）消费，配置部分以及agent存活使用etcd。
  ☆19Updated 4 years ago