bytedance / Elkeid-HUB
Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the community edition) data processing. The original intention is to solve complex data/event processing and external system linkage requirements through standardized rules.
☆94Updated last year
Alternatives and similar repositories for Elkeid-HUB:
Users that are interested in Elkeid-HUB are comparing it to the libraries listed below
- GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测☆77Updated last month
- 通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。☆13Updated 5 years ago
- 安全编排与自动化响应平台☆60Updated 4 years ago
- Go Agent is a go application probe of DongTai IAST, which collects method invocation data during runtime of Go application by dynamic hoo…☆42Updated 2 months ago
- Google V8 with OpenRASP builtins☆57Updated 3 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆290Updated 4 months ago
- ☆82Updated 4 years ago
- A simple web platform for WatchAD☆110Updated last year
- IAST 灰盒扫描工具☆445Updated 2 years ago
- Inject ELF into remote process☆132Updated last year
- 一个由长亭自研,直观而可扩展的容器安全 SDK☆121Updated last year
- Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置☆141Updated 5 years ago
- vArmor is a cloud native container sandbox system based on AppArmor/BPF/Seccomp. It also includes multiple built-in protection rules that…☆351Updated this week
- WatchAD2.0是一款针对域威胁的日志分析与监控系统☆385Updated last year
- 安全开发教学 - 用Docker制作一个高交互ssh蜜罐☆70Updated 6 years ago
- K8S安全攻防思维导图 | Docker安全攻防思维导图☆416Updated 2 years ago
- 专注于JVM的运行时防御系统RASP☆281Updated 9 months ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆437Updated last year
- An awesome reverse engine for xray poc. | 一个自动化根据 xray poc 生成对应靶站的工具☆413Updated 2 years ago
- Passets 是一套开源的被动资产识别框架。☆49Updated 4 years ago
- 使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。☆19Updated 3 years ago
- ☆101Updated last year
- ATT&CK实操☆369Updated 5 years ago
- Linux命令转发记录☆64Updated 5 years ago
- Hunter作为中通DevSecOps闭环方案中的一环,扮演着很重要的角色,开源之后希望能帮助到更多企业。☆345Updated 2 years ago
- ☆30Updated last year
- 业务风险枚举与规避知识框架(Business Risk Enumeration & Avoidance Kownledge)☆315Updated 3 months ago
- 用cel-go重现了长亭xray的poc检测功能的轮子☆296Updated 2 years ago
- 🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]☆80Updated 3 years ago
- java memory web shell extracting tool☆431Updated 3 years ago