promisechen / suricataLinks
suricata源码分析和读书笔记
☆24Updated 7 years ago
Alternatives and similar repositories for suricata
Users that are interested in suricata are comparing it to the libraries listed below
Sorting:
- dpdk infrastructure for software acceleration. Currently working on RX and ACL pre-filter☆91Updated 4 years ago
- add dpdk interface and packet processing to suricata in worker mode☆65Updated 4 years ago
- Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置☆141Updated 5 years ago
- 基于网络的入侵检测系统☆63Updated 13 years ago
- QNSM is network security monitoring framework based on DPDK.☆529Updated 3 years ago
- ☆24Updated 8 years ago
- Copy: Linux process monitoring (exec, fork, exit, set*uid, set*gid)☆31Updated 3 years ago
- The Libnids parallelized on commercial multi-core systems☆27Updated 8 years ago
- snort3.0 源码分析☆35Updated 5 years ago
- By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.☆600Updated 4 years ago
- HIDS全称是Host-based Intrusion Detection System,即基于主机型入侵检测系统,HIDS运行依赖这样一个原理:一个成功的入侵者一般而言都会留下他们入侵的痕迹。本人更倾向于通过记录主机的重要信息变更来发现入侵者。 本项目由两部分组成:一部分…☆107Updated 7 years ago
- 2017年底将至,正恰逢笔者的小棉袄出身,也是对人生这段时间的总结,决定写点东西留作纪念。 如有任何问题,可以联系我(liaixian1130@gmail.com,小棉袄小名:艾娴^_^)。欢迎技术交流,喷子勿扰了。文章中理论会提一部分,基本都是言简意赅,只说重点,完全以实…☆42Updated 7 years ago
- IDS协议识别测试流量☆22Updated 6 years ago
- suricata IDS的规则,测试在用的,部分自写的规则视情况放出。☆18Updated 6 years ago
- Sample DGA classifier☆126Updated 10 years ago
- Using nmap NSE scripts for identifying common ICS protocols[使用nmap的nse脚本对常见工控协议进行识别,附对应nse脚本,并记录pcap流量]☆150Updated 4 years ago
- TLS 技术原理与 1.0协议旁路解密实现方法☆26Updated 6 years ago
- IP/TCP/UDP数据包分析及解析☆225Updated 7 years ago
- 使用机器学习识别WebShell☆127Updated 7 years ago
- 本项目致力于收集网上公开来源的威胁情报,主要关注信誉类威胁情报(如IP/域名等),以及事件类威胁情报。☆310Updated 7 years ago
- 一个HIDS agent端的demo☆17Updated 5 years ago
- Suspicious DGA from PDNS and Sandbox.☆186Updated 3 years ago
- Anomaly detection based on DNS traffic analysis☆54Updated 5 years ago
- 使用pyspider爬虫框架爬取工控相关数据(漏洞、预警、安全事件等)☆70Updated 4 years ago
- himqtt是首款完整源码的高性能MQTT物联网防火墙 - MQTT Application FireWall,采用epoll模式支持高并发连接。☆122Updated last year
- 使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。☆19Updated 4 years ago
- 通过Linux netlink NETLINK_CONNECTOR 协议实时进行监控本机进程情况。☆13Updated 5 years ago
- WAF测试工具☆65Updated 10 years ago
- 主要利用DPDK做DPI功能,此项目仅仅作为个人学习DPDK的实践项目。☆23Updated 7 years ago
- LibHTP is a security-aware parser for the HTTP protocol and the related bits and pieces.☆304Updated 3 weeks ago