ossec / ossec-hidsLinks
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
☆4,743Updated 4 months ago
Alternatives and similar repositories for ossec-hids
Users that are interested in ossec-hids are comparing it to the libraries listed below
Sorting:
- Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.☆6,961Updated this week
- GRR Rapid Response: remote live forensics for incident response☆4,913Updated 2 weeks ago
- Arkime is an open source, large scale, full packet capturing, indexing, and database system.☆6,662Updated this week
- DEPRECATED - MozDef: Mozilla Enterprise Defense Platform☆2,169Updated 3 years ago
- Cuckoo Sandbox is an automated dynamic malware analysis system☆5,719Updated 3 years ago
- Snort++☆2,918Updated 3 weeks ago
- A network sniffer that logs all DNS server replies for use in a passive DNS setup☆1,698Updated last year
- Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OIS…☆5,340Updated this week
- Modern Honey Network☆2,456Updated 6 months ago
- TheHive: a Scalable, Open Source and Free Security Incident Response Platform☆3,695Updated 2 years ago
- Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management☆3,092Updated 4 years ago
- MISP (core software) - Open Source Threat Intelligence and Sharing Platform☆5,765Updated this week
- The pattern matching swiss knife☆8,839Updated 2 weeks ago
- A Suricata based IDS/IPS/NSM distro☆1,539Updated 10 months ago
- The Sleuth Kit® (TSK) is a library and collection of command line digital forensics tools that allow you to investigate volume and file s…☆2,815Updated 2 weeks ago
- Loki - Simple IOC and YARA Scanner☆3,561Updated 6 months ago
- Open Source Vulnerability Management Platform☆5,485Updated 2 weeks ago
- Repository of yara rules☆4,422Updated last year
- Digging Deeper....☆3,314Updated this week
- Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own in…☆3,757Updated this week
- This repository contains the scanner component for Greenbone Community Edition.☆3,897Updated this week
- Open Source Tripwire®☆898Updated last year
- Real Intelligence Threat Analytics (RITA) is a framework for detecting command and control communication through network traffic analysis…☆2,513Updated 11 months ago
- Cowrie SSH/Telnet Honeypot https://docs.cowrie.org/☆5,616Updated this week
- Network recon framework. Build your own, self-hosted and fully-controlled alternatives to Shodan / ZoomEye / Censys and GreyNoise, run yo…☆3,730Updated this week
- Automated Adversary Emulation Platform☆6,209Updated last month
- Investigate malicious Windows logon by visualizing and analyzing Windows event log☆2,906Updated last year
- Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs an…☆2,140Updated this week
- Fast Incident Response☆1,893Updated last week
- Wazuh - The Open Source Security Platform. Unified XDR and SIEM protection for endpoints and cloud workloads.☆12,675Updated this week