korczis / libnids
Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.0.x. Libnids offers IP defragmentation, TCP stream assembly and TCP port scan detection.
☆53Updated 9 years ago
Alternatives and similar repositories for libnids:
Users that are interested in libnids are comparing it to the libraries listed below
- It is a platform to use multiprocess to combine dpdk and libnids together to support analyse packets in 10G port.☆38Updated 10 years ago
- ☆25Updated 12 years ago
- A Linux kernel module that locates the system call table in memory and hooks uname. Contributions welcome!☆59Updated 11 years ago
- libnids☆110Updated last year
- Automatically exported from code.google.com/p/netmap-libpcap☆78Updated 2 years ago
- Kills TCP connections☆43Updated 2 years ago
- Resources for reverse engineering Go binaries☆41Updated 10 years ago
- DSSL library: network capture and SSL decryption toolkit☆25Updated 5 years ago
- Slides, codes and videos of the talk "DEP/ASLR bypass without ROP/JIT" on CanSecWest 2013☆49Updated 12 years ago
- Reassembles UDP/TCP packets into application layer messages.☆42Updated 6 years ago
- Filters for HTTP requests��☆20Updated 9 years ago
- Pcap editing and replay tools for *NIX and Windows☆56Updated 9 years ago
- ☆32Updated 9 years ago
- Quickly find references to the specified Immediate number, or find the function call of specifies offset, and generate C++ functions call…☆25Updated 8 years ago
- A LKM rootkit for Linux kernel 2.6.x, 3.x and 4.x☆43Updated 8 years ago
- Example application of how to passively monitor multiple sockets on Linux.☆74Updated 7 years ago
- Linux hooking engine for ARM architecture☆16Updated 9 years ago
- sample code for educate myself-_-☆43Updated 8 years ago
- **NOTE**: This is outdated and no longer maintained. There's a new version at https://github.com/zeek/spicy.☆40Updated 7 years ago
- A multi-threading tool to sniff TCP flow statistics and embedded HTTP headers from PCAP file. Each TCP flow carrying HTTP is exported to …☆187Updated 6 years ago
- A library for efficient interception of established TCP connections☆19Updated 9 years ago
- --= Xt9 - Anti - Rootkit =-- beta v0.11 by xti9er☆15Updated 4 years ago
- 一个基于lua插件的pcap监控工具。☆27Updated 7 years ago
- High level language for describing protocol parsers.☆74Updated 3 weeks ago
- A hypervisor or virtual machine monitor (VMM) fuzzer☆28Updated 5 years ago
- Advanced process execution monitoring utility for linux (procmon like)☆84Updated 9 years ago
- send dns query packet☆25Updated 4 years ago
- viewssld is a free, open source, non-terminating SSLv2/SSLv3/TLS traffic decryption daemon for Snort, and other Network Intrusion Detecti…☆74Updated 7 years ago
- The Libnids parallelized on commercial multi-core systems☆27Updated 7 years ago
- Vipasyin Webshell detector (golang)☆8Updated 9 years ago