GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测
☆76Feb 8, 2025Updated last year
Alternatives and similar repositories for RuleCat
Users that are interested in RuleCat are comparing it to the libraries listed below
Sorting:
- agent 部分使用go 开发而成,采用插件模式开发而成,配置部分以及agent存活使用etcd。☆20Aug 2, 2021Updated 4 years ago
- 使用peppa_pc 框架开发而成的扫描器,支持web指纹,自动化扫描☆11Nov 21, 2019Updated 6 years ago
- 欺骗防御Linux版本Agent☆13Jul 26, 2021Updated 4 years ago
- Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)☆305Nov 30, 2024Updated last year
- ��一个Go语言编写的可扩展的蜜罐框架☆17Feb 24, 2022Updated 4 years ago
- 学习lua而开发的waf, 支持动态更新一些拦截域名或者 url规则☆16Nov 26, 2019Updated 6 years ago
- Sep0lkit's Blog☆14Apr 18, 2020Updated 5 years ago
- 开源威胁情报,包含3个组件,2个查询API,1个前端,300万+恶意IP,Go +Redis开发的威胁情报查询API性能良好,恶意IP一直在更新。☆130Oct 14, 2022Updated 3 years ago
- Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and ser…☆2,606Mar 9, 2026Updated 2 weeks ago
- oauth2研究: 实现代码、漏洞利用、修复方案☆19May 21, 2019Updated 6 years ago
- A Linux Host-based Intrusion Detection System based on eBPF.☆458Dec 20, 2023Updated 2 years ago
- 🌏 [WIP]整理好了之后迁移到 cdk-team/document,包含各类容器、K8s攻防场景的CDK文档。☆25Apr 16, 2022Updated 3 years ago
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆602Apr 1, 2021Updated 4 years ago
- 用cel-go重现了长亭xray的poc检测功能的轮子☆297Jun 24, 2022Updated 3 years ago
- 处于原型阶段☆20Nov 30, 2021Updated 4 years ago
- [archived] 一款实验性质的主机入侵检测系统☆2,190Jun 29, 2020Updated 5 years ago
- 安全编排与自动化响应平台☆62Dec 16, 2020Updated 5 years ago
- 一个HIDS agent端的demo☆17Feb 29, 2020Updated 6 years ago
- 用nmap 和 elk 做内网资产盘点,依赖 nmap-vulners☆28Apr 29, 2020Updated 5 years ago
- 安全、快捷、高交互、企业级的蜜罐管理系统,护网;支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…☆1,271Oct 17, 2023Updated 2 years ago
- golang 版本的 nc ,支持平时使用的大部分功能,并增加了流量rc4加密☆38Nov 18, 2020Updated 5 years ago
- golang sliding or tumbling window stream-processing☆13Apr 1, 2021Updated 4 years ago
- Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等☆1,267Jul 8, 2023Updated 2 years ago
- 渗透测试复盘总结☆15Jul 16, 2020Updated 5 years ago
- Extract passwords from memory with strace☆41Nov 17, 2021Updated 4 years ago
- collection poc use pocsuite framework 收集一些 poc with pocsuite框架☆156Sep 21, 2018Updated 7 years ago
- k0otkit is a universal post-penetration technique which could be used in penetrations against Kubernetes clusters.☆301Aug 30, 2021Updated 4 years ago
- Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…☆697Dec 25, 2023Updated 2 years ago
- Linux EDR written in Golang and based on eBPF.☆244May 24, 2022Updated 3 years ago
- 《白帽子安全开发实战》配套代码☆994Mar 15, 2021Updated 5 years ago
- x-crack - Weak password scanner, Support: FTP/SSH/SNMP/MSSQL/MYSQL/PostGreSQL/REDIS/ElasticSearch/MONGODB☆1,283May 22, 2024Updated last year
- Golang 解析Wappalyzer指纹库,暂不支持识别☆13Oct 10, 2020Updated 5 years ago
- 基于inotify的Linux文件实时监控程序,同时调用河马扫描来检测文件☆22Sep 4, 2020Updated 5 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆470Sep 16, 2023Updated 2 years ago
- 傻瓜式漏洞PoC测试框架☆1,443Oct 30, 2023Updated 2 years ago
- 检测绝大部分所谓的内存免杀马☆734Sep 15, 2022Updated 3 years ago
- 寻找可注入进程☆13Jul 16, 2020Updated 5 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆294Jul 25, 2021Updated 4 years ago
- a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数,避开基于execve系统调用监控的命令日志☆245May 8, 2019Updated 6 years ago