Alternatives and similar repositories for linux-malware-detect

Users that are interested in linux-malware-detect are comparing it to the libraries listed below

• Tripwire / tripwire-open-source
  Open Source Tripwire®
  ☆909Updated last year
• extremeshok / clamav-unofficial-sigs
  ClamAV Unofficial Signatures Updater maintained by eXtremeSHOK.com
  ☆533Updated 2 years ago
• mrash / psad
  psad: Intrusion Detection and Log Analysis with iptables
  ☆406Updated 2 years ago
• Neo23x0 / auditd
  Best Practice Auditd Configuration
  ☆1,678Updated 7 months ago
• shirkdog / pulledpork
  Pulled Pork for Snort and Suricata rule management (from Google code)
  ☆439Updated 4 years ago
• aide / aide
  aide source code
  ☆637Updated last week
• StamusNetworks / SELKS
  A Suricata based IDS/IPS/NSM distro
  ☆1,562Updated last month
• Neo23x0 / Loki
  Loki - Simple IOC and YARA Scanner
  ☆3,640Updated this week
• DinoTools / dionaea
  Home of the dionaea honeypot
  ☆768Updated last year
• ossec / ossec-hids
  OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, roo…
  ☆4,819Updated 7 months ago
• gamelinux / passivedns
  A network sniffer that logs all DNS server replies for use in a passive DNS setup
  ☆1,725Updated last year
• firehol / firehol
  A firewall for humans...
  ☆1,548Updated last month
• trick77 / ipset-blacklist
  A bash script to ban large numbers of IP addresses published in blacklists.
  ☆716Updated last year
• wazuh / wazuh-ruleset
  Wazuh - Ruleset
  ☆476Updated 11 months ago
• maliceio / malice
  VirusTotal Wanna Be - Now with 100% more Hipster
  ☆1,697Updated 2 years ago
• pwnlandia / mhn
  Modern Honey Network
  ☆2,461Updated 9 months ago
• BinaryDefense / artillery
  The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
  ☆1,025Updated 3 years ago
• certtools / intelmq
  IntelMQ is a solution for IT security teams for collecting and processing security feeds using a message queuing protocol.
  ☆1,077Updated last week
• mushorg / glastopf
  Web Application Honeypot
  ☆584Updated last year
• hardenedlinux / harbian-audit
  Hardened Debian GNU/Linux distro auditing
  ☆456Updated last year
• Security-Onion-Solutions / security-onion
  Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management
  ☆3,103Updated 4 years ago
• mikesplain / openvas-docker
  A Docker container for Openvas
  ☆779Updated last year
• Yara-Rules / rules
  Repository of yara rules
  ☆4,515Updated last year
• eset / malware-ioc
  Indicators of Compromises (IOC) of our various investigations
  ☆1,830Updated this week
• OpenSCAP / openscap
  NIST Certified SCAP 1.2 toolkit
  ☆1,564Updated last month
• buffer / thug
  Python low-interaction honeyclient
  ☆1,020Updated 2 weeks ago
• konstruktoid / hardening
  Hardening Ubuntu. Systemd edition.
  ☆1,480Updated this week
• toolswatch / vFeed
  The Correlated CVE Vulnerability And Threat Intelligence Database API
  ☆948Updated 4 years ago
• a2o / snoopy
  Snoopy Command Logger is a small library that logs all program executions on your Linux/BSD system.
  ☆1,267Updated 10 months ago
• ovh / debian-cis
  PCI-DSS compliant Debian 11/12 hardening
  ☆923Updated last week