xisafe / suricata-rule
suricata IDS的规则,测试在用的,部分自写的规则视情况放出。
☆18Updated 5 years ago
Alternatives and similar repositories for suricata-rule:
Users that are interested in suricata-rule are comparing it to the libraries listed below
- 《横向移动攻击与检测技术》专栏文章☆16Updated 5 years ago
- ThreatHound is a threat intelligence query tool use for detecting potentially malicious IP or domains. It combines the MISP open source t…☆39Updated 5 years ago
- ☆9Updated 8 years ago
- 天御攻防实验室 - 威胁猎杀实战系列☆102Updated 5 years ago
- A golang client of our webshell scanner API☆28Updated 7 years ago
- tcppc: A simple honeypot to capture TCP/TLS/UDP payloads on ALL ports.☆35Updated 4 years ago
- ☆30Updated last year
- ☆38Updated last year
- Automatic reversed shell detecting and defensing☆51Updated 6 years ago
- ☆56Updated 4 years ago
- 恶意脚本检测分类工具☆40Updated 4 years ago
- A simple web platform for WatchAD☆110Updated last year
- Code snippet accompanying blog post☆29Updated 9 years ago
- Passets 是一套开源的被动资产识别框架。☆49Updated 4 years ago
- os fingerprint probe through smb☆10Updated 3 years ago
- 奇安信报开源软件漏洞cve所用目录。每个人报漏洞请建立自己的目录。☆45Updated 5 years ago
- 一个HIDS agent端的demo☆17Updated 5 years ago
- Suricata安装部署&丢包优化&性能调优&规则调整&Pfring设置☆140Updated 5 years ago
- ☆105Updated 7 years ago
- ☆54Updated 8 months ago
- 基于docker虚拟化的恶意代码沙箱☆71Updated 6 years ago
- check_IP is to judge whether a IP is malicious based on open threat intelligence,基于开源威胁情报AlienVault,排查IP地址及域名的恶意性☆51Updated 6 years ago
- Shell say no to NIDS☆71Updated 5 years ago
- ☆21Updated 7 years ago
- nmap service and application version detection (without nmap installation)☆113Updated 7 years ago
- Explore Indicators of Compromise Automatically☆94Updated 5 years ago
- 基于inotify的Linux文件实时监控程序,同时调用河马扫描来检测文件☆22Updated 4 years ago
- 日常积累的安全工具与代码、脚本☆45Updated 2 months ago
- ☆11Updated 4 years ago
- A Solution For Cross-Platform Obfuscated Commands Detection presented on CIS2019 China. 动静态Bash/CMD/PowerShell命令混淆检测框架 - CIS 2019大会☆163Updated 5 years ago