Alternatives and similar repositories for RuleCat

Users that are interested in RuleCat are comparing it to the libraries listed below

• njcx / Artemis_HIDS
  使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构，agent 部分使用go 开发而成， 会把采集的数据写入到kafka里面，由后端的规则引擎（go开发而成）消费，配置部分以及agent存活使用etcd。
  ☆19Updated 4 years ago
• HXSecurity / DongTai-agent-go
  Go Agent is a go application probe of DongTai IAST, which collects method invocation data during runtime of Go application by dynamic hoo…
  ☆42Updated 11 months ago
• tianyulab / Threat_Hunting_with_ELK
  天御攻防实验室 - 威胁猎杀实战系列
  ☆102Updated 6 years ago
• momosecurity / cornerstone
  Linux命令转发记录
  ☆63Updated 6 years ago
• C4o / FBI-Analyzer
  A Flexible Log Analysis System Based on Golang and Lua-Plugins. 插件化的准实时日志分析系统。
  ☆95Updated 4 years ago
• neargle / cloud_native_security_test_case
  🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]
  ☆81Updated 4 years ago
• md-irohas / tcppc-go
  tcppc: A simple honeypot to capture TCP/TLS/UDP payloads on ALL ports.
  ☆36Updated 5 years ago
• Abyssal-Fish-Technology / ly_probe
  ☆25Updated last year
• bytedance / Elkeid-HUB
  Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the comm…
  ☆101Updated 2 years ago
• Qianlitp / WatchAD-Web
  A simple web platform for WatchAD
  ☆110Updated 2 years ago
• netxfly / docker_ssh_honeypot
  安全开发教学 - 用Docker制作一个高交互ssh蜜罐
  ☆72Updated 7 years ago
• grayddq / HIDS
  HIDS全称是Host-based Intrusion Detection System，即基于主机型入侵检测系统，HIDS运行依赖这样一个原理：一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成：一部分…
  ☆106Updated 7 years ago
• al0ne / suricata_optimize
  Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置
  ☆144Updated 6 years ago
• peter-cui1221 / sqlinjection-detect
  SQL injection detection engine built on of SQL tokenizing and syntax analysis written in C
  ☆61Updated 5 years ago
• jweny / Distributed_Docker_Openvas
  基于Docker集群的分布式Openvas(GVM)。本项目包括：GVM-Docker镜像，Openvas-Scanner-Docker镜像，GVM远程调度(golang)。
  ☆29Updated 5 years ago
• angelwhu / jvm-rasp
  基于JVM-Sandbox实现RASP安全监控防护
  ☆53Updated 2 years ago
• qssec / TSL-1.0-protocol-bypass-resolution
  TLS 技术原理与 1.0协议旁路解密实现方法
  ☆27Updated 6 years ago
• Sep0lkit / Blog
  Sep0lkit's Blog
  ☆15Updated 5 years ago
• Abyssal-Fish-Technology / ly_analyser
  ☆31Updated last year
• baidu-security / openrasp-v8
  Google V8 with OpenRASP builtins
  ☆57Updated 4 years ago
• seccome / decept-agent-linux
  欺骗防御Linux版本Agent
  ☆13Updated 4 years ago
• baidu-security / openrasp-golang
  ☆17Updated 6 years ago
• DSO-Lab / passets
  Passets 是一套开源的被动资产识别框架。
  ☆49Updated 5 years ago
• chaitin / libveinmind
  一个由长亭自研，直观而可扩展的容器安全 SDK
  ☆121Updated 2 years ago
• grayddq / PypiScan
  这个脚本主要提供对pypi供应链的源头进行安全扫描研究，扫描并发现未知的恶意包情况。
  ☆28Updated 2 years ago
• njcx / BlackIPS
  开源威胁情报，包含3个组件，2个查询API，1个前端，300万+恶意IP，Go +Redis开发的威胁情报查询API性能良好，恶意IP一直在更新。
  ☆130Updated 3 years ago
• G4rb3n / Script-Ganker
  恶意脚本检测分类工具
  ☆40Updated 4 years ago
• xing-xiao / Maneo-Detect-Behinder
  基于Flink实现实时冰蝎(Behinder)流量检测
  ☆39Updated 6 years ago
• dosec-cn / harbor-scanner
  一个免费的镜像漏洞扫描工具, 可以扫描镜像中已安装软件包的漏洞，支持中文漏洞库，可与 Harbor 无缝集成。
  ☆107Updated 3 years ago
• oasiszrz / XAIGen
  ☆85Updated 5 years ago