OVALInterpreter / ovaldiLinks
OVAL Interpreter
☆13Updated 4 years ago
Alternatives and similar repositories for ovaldi
Users that are interested in ovaldi are comparing it to the libraries listed below
Sorting:
- Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)☆31Updated 3 years ago
- Pull some Malware samples here for other security researchers/malware analyst's to analyze and play with.☆172Updated last year
- a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数,避 开基于execve系统调用监控的命令日志☆242Updated 6 years ago
- Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置☆141Updated 5 years ago
- ATT&CK 框架图中文翻译版 原为安恒奖品,自我二次翻译,修改了一些小的翻译错误问题,自我保存即可☆265Updated 5 years ago
- ATT&CK实操☆371Updated 5 years ago
- 恶意脚本检测分类工具☆40Updated 4 years ago
- check_IP is to judge whether a IP is malicious based on open threat intelligence,基于开源威胁情报AlienVault,排查IP地址及域名的恶意性☆52Updated 7 years ago
- 这是一个基于 Cuckoo 开源版本的沙箱的修订版本, 该版本完全为了适配国内软件环境所打造☆76Updated 2 years ago
- Sep0lkit's Blog☆15Updated 5 years ago
- Automatic reversed shell detecting and defensing☆51Updated 6 years ago
- 一个HIDS agent端的demo☆17Updated 5 years ago
- 收集了一些安全公司的博客☆144Updated 6 years ago
- 记录我的安全学术学习☆129Updated 4 years ago
- CVE Data Analysis, CVE Monitor, CVE EXP Prediction Based on Deep Learning. 1999-2020年存量CVE数据分析、监控CVE增量更新、基于深度学习的CVE EXP预测和自动化推送☆174Updated 2 years ago
- HIDS全称是Host-based Intrusion Detection System,即基于主机型入侵检测系统,HIDS运行依赖这样一个原理:一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成:一部分…☆107Updated 7 years ago
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆600Updated 4 years ago
- APT学习指南(Advanced persistent threat learning Guide)☆219Updated 4 years ago
- datacon比赛方向三-攻击源与攻击者分析writeup☆93Updated 6 years ago
- 天御攻防实验室 - 威胁猎杀实战系列☆102Updated 6 years ago
- ☆106Updated 7 years ago
- 用来检测 windows 系统尚未安装的补丁信息,并根据指定的严重等级按顺序输出到文件中,可以作为 Windows 服务器运维人员日常检查更新或者网络安全人员对 Windows 服务器安全检查的有力工具,欢迎师傅们 star 支持。☆91Updated 6 years ago
- 通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。☆13Updated 5 years ago
- suricata IDS的规则,测试在用的,部分自写的规则视情况放出。☆18Updated 6 years ago
- HIDS/EDR Demo☆15Updated 4 years ago
- ICSwiki☆26Updated 5 years ago
- ☆22Updated 5 years ago
- An easy ATT&CK-based Sysmon hunting tool, showing in Blackhat USA 2019 Arsenal☆202Updated 3 years ago
- 恶意软件分析套件☆18Updated 8 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆297Updated 8 months ago