bytedance / Elkeid-HUBView external linksLinks
Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the community edition) data processing. The original intention is to solve complex data/event processing and external system linkage requirements through standardized rules.
☆103May 8, 2023Updated 2 years ago
Alternatives and similar repositories for Elkeid-HUB
Users that are interested in Elkeid-HUB are comparing it to the libraries listed below
Sorting:
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,558Updated this week
- Golang eBPF RASP☆10Jul 19, 2023Updated 2 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆603Apr 1, 2021Updated 4 years ago
- agent 部分使用go 开发而成,采用插件模式开发而成,配置部分以及agent存活使用etcd。☆20Aug 2, 2021Updated 4 years ago
- Inject ELF into remote process☆152Oct 20, 2023Updated 2 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆457Dec 20, 2023Updated 2 years ago
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆69Oct 19, 2025Updated 3 months ago
- vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that…☆439Jan 26, 2026Updated 3 weeks ago
- 一个基于openresty开发的安全网关demo☆30Mar 3, 2022Updated 3 years ago
- Hades is an cross-platform HIDS with kernel-space data collection.☆50May 29, 2023Updated 2 years ago
- ☆30Apr 19, 2023Updated 2 years ago
- The high-level/low-level implementation of Linux Fanotify.☆23Nov 11, 2025Updated 3 months ago
- 🔥Open source RASP solution☆2,952Oct 2, 2025Updated 4 months ago
- veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集☆1,645Jan 10, 2024Updated 2 years ago
- GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测☆78Feb 8, 2025Updated last year
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,266Jul 8, 2023Updated 2 years ago
- Linux命令转发记录☆62Jul 15, 2019Updated 6 years ago
- ☆10Dec 28, 2015Updated 10 years ago
- Kernel-Mode Rootkit Hunter☆376Nov 13, 2021Updated 4 years ago
- datacon比赛方向三-攻击源与攻击者分析writeup☆93May 26, 2019Updated 6 years ago
- java memory web shell extracting tool☆497May 17, 2021Updated 4 years ago
- Analysis of HTTP traffic and detection of anomalous user behavior in allowed actions. UEBA system.☆25Feb 15, 2023Updated 3 years ago
- [archived] 一款实验性质的主机入侵检测系统☆2,192Jun 29, 2020Updated 5 years ago
- Mixeway is security orchestrator for vulnerability scanners which enable easy plug in integration with CICD pipelines. MixewayBackend pro…☆17Sep 26, 2024Updated last year
- 通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。☆13Oct 11, 2019Updated 6 years ago
- ☆14Apr 4, 2019Updated 6 years ago
- ☆13Feb 25, 2021Updated 4 years ago
- CloudWalker Platform☆678Dec 14, 2022Updated 3 years ago
- HIDS全称是Host-based Intrusion Detection System,即基于主机型入侵检测系统,HIDS运行依赖这样一个原理:一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成:一部分…☆107Dec 29, 2017Updated 8 years ago
- Convert Splunk SPL to Elasticsearch DSL with pegjs☆13Apr 25, 2022Updated 3 years ago
- Apache Shiro payload AES解密☆28Mar 11, 2021Updated 4 years ago
- Some ICS Vulnerabilities I've found will be listed here.☆13Nov 18, 2016Updated 9 years ago
- 安全编排与自动化响应平台☆62Dec 16, 2020Updated 5 years ago
- 常见的攻击行为监测特征及方法,涵盖端点和流量,未包含PowerShell和Sysmon。预祝运营生活愉快!☆644Jan 18, 2026Updated 3 weeks ago
- An automatic testing tool for Java software☆25May 21, 2018Updated 7 years ago
- 很简��单的webshell扫描☆55Aug 8, 2017Updated 8 years ago
- “小黄鸭”挖矿组织报告☆49Feb 16, 2023Updated 3 years ago
- 📦 Make security testing of K8s, Docker, and Containerd easier.☆4,560Nov 5, 2025Updated 3 months ago