ossec / ossec-hids
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
☆4,559Updated last week
Alternatives and similar repositories for ossec-hids:
Users that are interested in ossec-hids are comparing it to the libraries listed below
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆6,579Updated this week
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆6,462Updated this week
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…☆4,861Updated this week
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,084Updated 3 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,587Updated 2 years ago
- Modern Honey Network☆2,442Updated last month
- Snort++☆2,671Updated 2 weeks ago
- Open Source Vulnerability Management Platform☆5,153Updated this week
- A network sniffer that logs all DNS server replies for use in a passive DNS setup☆1,681Updated 7 months ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,676Updated this week
- GRR Rapid Response: remote live forensics for incident response☆4,823Updated last month
- The pattern matching swiss knife☆8,463Updated this week
- A Suricata based IDS/IPS/NSM distro☆1,502Updated 5 months ago
- DEPRECATED - MozDef: Mozilla Enterprise Defense Platform☆2,166Updated 3 years ago
- Repository of yara rules☆4,247Updated 9 months ago
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆5,477Updated this week
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,599Updated this week
- Malicious traffic detection system☆6,708Updated this week
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,504Updated 2 years ago
- Loki - Simple IOC and YARA Scanner☆3,444Updated last month
- A curated list of Awesome Threat Intelligence resources☆8,332Updated 5 months ago
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,022Updated this week
- w3af: web application attack and audit framework, the open source web vulnerability scanner.☆4,647Updated last year
- Open Source Tripwire®☆865Updated 11 months ago
- ZMap is a fast single packet network scanner designed for Internet-wide network surveys.☆5,601Updated this week
- NIST Certified SCAP 1.2 toolkit☆1,407Updated this week
- cve-search - a tool to perform local searches for known vulnerabilities☆2,359Updated 2 weeks ago
- Nikto web server scanner☆8,840Updated last week
- Web Application Security Scanner Framework☆3,819Updated last year
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,507Updated 6 months ago