sysflow-telemetry / sysflowLinks
SysFlow documentation and issues tracker
☆46Updated 8 months ago
Alternatives and similar repositories for sysflow
Users that are interested in sysflow are comparing it to the libraries listed below
Sorting:
- A process level network security monitoring and enforcement project for Kubernetes, using eBPF☆43Updated 5 years ago
- egrets monitors egress☆46Updated 5 years ago
- Yara powered NIDS with high speed packet capture powered by PF_RING☆69Updated last year
- Osquery Resources☆60Updated 5 years ago
- ptrace-based event producer for udig☆67Updated 2 years ago
- Red Canary's eBPF Sensor☆107Updated last week
- Kubernetes offensive framework built in eBPF☆37Updated 2 years ago
- Tools for conducting analysis of CVE data in Elasticsearch☆74Updated last month
- Mapping Corelight or Zeek data to Elastic Common Schema fields☆34Updated last week
- SysFlow collection probe☆16Updated 5 months ago
- Linux Kernel Runtime Integrity with eBPF☆179Updated last year
- A repository to store Rad Fingerprinting data.☆24Updated 10 months ago
- SysFlow edge processing pipeline☆16Updated 5 months ago
- agent for handling seccomp descriptors for container runtimes☆46Updated last year
- Expandable Defensive Cyber Operations Platform☆43Updated 2 years ago
- Cisco Orbital - Osquery queries by Talos☆134Updated 9 months ago
- Falco rule repository☆126Updated this week
- Suricata Language Server is an implementation of the Language Server Protocol for Suricata signatures. It adds syntax check, hints and au…☆72Updated this week
- Falco plugins registry☆97Updated last week
- Kit for building Falco drivers: kernel modules or eBPF probes☆65Updated this week
- Wireshark plugin to display Suricata analysis info☆94Updated 3 years ago
- Decision trees generated via Graphviz to inform pragmatic threat modelling.☆11Updated 4 years ago
- ☆34Updated 4 years ago
- Understand OVAL results in a blink of an eye☆35Updated 2 years ago
- Threat Mapping Catalogue☆17Updated 3 years ago
- Kestrel Jupyter Notebook Kernel☆9Updated last year
- PEACH - a step-by-step framework for modeling and improving SaaS and PaaS tenant isolation, by managing the attack surface exposed by use…☆71Updated 2 years ago
- Linux endpoint events for BPF enabled systems☆24Updated 2 years ago
- Bro/Zeek integration with osquery☆94Updated 4 years ago
- bpflock - eBPF driven security for locking and auditing Linux machines☆147Updated 3 years ago