njcx / RuleCat
GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测
☆77Updated last month
Alternatives and similar repositories for RuleCat:
Users that are interested in RuleCat are comparing it to the libraries listed below
- 使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的 架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。☆19Updated 3 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆52Updated last year
- 天御攻防实验室 - 威胁猎杀实战系列☆102Updated 5 years ago
- 安全开发教学 - 用Docker制作一个高交互ssh蜜罐☆69Updated 6 years ago
- A simple web platform for WatchAD☆110Updated last year
- Go Agent is a go application probe of DongTai IAST, which collects method invocation data during runtime of Go application by dynamic hoo…☆42Updated 2 months ago
- Passets 是一套开源的被动资产识别框架。☆49Updated 4 years ago
- Linux命令转发记录☆64Updated 5 years ago
- 🌶 一些和容器化/容器编排/服务网格等技术相关的安全代码片段[自用备份]☆80Updated 3 years ago
- 一个基于openresty开发的安全网关demo☆30Updated 3 years ago
- 企业级安全智能化实践☆68Updated 2 years ago
- ☆17Updated 5 years ago
- Elkeid HUB is a rule/event processing engine maintained by the Elkeid Team that supports streaming/offline (not yet supported by the comm…☆94Updated last year
- 威胁情报采集系统☆32Updated 2 years ago
- ☆23Updated last year
- HIDS全称是Host-based Intrusion Detection System,即基于主机型入侵检测系统 ,HIDS运行依赖这样一个原理:一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成:一部分…☆104Updated 7 years ago
- 分析验证安全漏洞,仅供学习☆21Updated 4 years ago
- 开源威胁情报,包含3个组件,2个查询API,1个前端,300万+恶意IP,Go +Redis开发的威胁情报查询API性能良好,恶意IP一直在更新。☆127Updated 2 years ago
- IDS协议识别测试流量☆22Updated 6 years ago
- 基于AST的JSONP劫持漏洞自动化挖掘☆93Updated 4 years ago
- ☆28Updated last year
- ☆56Updated 4 years ago
- 恶意脚本检测分类工具☆40Updated 4 years ago
- 一款监控端口变化的系统——beholder_scanner端☆84Updated 8 months ago
- A Flexible Log Analysis System Based on Golang and Lua-Plugins. 插件化的准实时日志分析系统。☆94Updated 4 years ago
- 基于Docker集群的分布式Openvas(GVM)。本项目包括:GVM-Docker镜像,Openvas-Scanner-Docker镜像,GVM远程调度(golang)。☆29Updated 4 years ago
- 使用golang编写的服务弱口令检测☆41Updated last year
- Linux安全基线扫描、报告生成与自动修复程序☆81Updated 5 years ago
- The Golang SDK and CLI of ZoomEye@Knownsec by gyyyy.☆40Updated 3 years ago
- docker 安全基线规范☆90Updated 6 years ago