ossec / ossec-hidsLinks
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
☆4,804Updated 7 months ago
Alternatives and similar repositories for ossec-hids
Users that are interested in ossec-hids are comparing it to the libraries listed below
Sorting:
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆7,087Updated this week
- DEPRECATED - MozDef: Mozilla Enterprise Defense Platform☆2,171Updated 3 years ago
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆6,770Updated this week
- GRR Rapid Response: remote live forensics for incident response☆4,946Updated 2 months ago
- A network sniffer that logs all DNS server replies for use in a passive DNS setup☆1,714Updated last year
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,769Updated 3 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,101Updated 4 years ago
- Modern Honey Network☆2,462Updated 8 months ago
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…☆5,482Updated 2 weeks ago
- Snort++☆3,008Updated last week
- A Suricata based IDS/IPS/NSM distro☆1,558Updated 2 weeks ago
- NIST Certified SCAP 1.2 toolkit☆1,559Updated 3 weeks ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,853Updated this week
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆5,857Updated last week
- Open Source Tripwire®☆905Updated last year
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,794Updated 3 weeks ago
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,792Updated last month
- The pattern matching swiss knife☆8,996Updated 2 weeks ago
- Malicious traffic detection system☆7,144Updated this week
- OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)☆2,466Updated 5 years ago
- NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX☆4,826Updated last year
- Advanced Honeypot framework.☆1,268Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,192Updated 2 weeks ago
- Loki - Simple IOC and YARA Scanner☆3,625Updated this week
- ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-base…☆9,093Updated last week
- Kippo - SSH Honeypot☆1,700Updated last year
- Repository of yara rules☆4,499Updated last year
- Distributed & real time digital forensics at the speed of the cloud☆1,204Updated 5 years ago
- Fast Incident Response☆1,921Updated this week
- Linux Malware Detection (LMD)☆1,296Updated 5 months ago