Top 59 ids open source projects

** README ** This repo has MOVED to https://github.com/quadrantsec/sagan

Wazuh - Kibana plugin

Wazuh - Docker containers

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

Open Source EDR for Windows

Quantum Insert

Wazuh - The Open Source Security Platform

Suricata git repository maintained by the OISF

The tool for updating your Suricata rules.

🚌 The missing link to connect open-source threat intelligence tools.

An UNOFFICIAL Git Repository of Snort Rules(IDS rules) Releases.

Bro IDS Dockerfile

64 bit ID Generator

Fastest UUID with cryptographic PRNG for JS

Real-time HTTP Intrusion Detection

Suitably random and reasonably unique human readable (and fairly adorable) ids

🤖 Id obfuscation based on Knuth's multiplicative hashing method for PHP.

Wazuh - Chef cookbooks

Open-Source Security Architecture | 开源安全架构

Daemon to ban hosts that cause multiple authentication errors

A Suricata based IDS/IPS distro

Super short, fully unique, non-sequential and URL friendly Ids

A small PHP library to generate YouTube-like ids from numbers. Use it when you don't want to expose your database ids to the user.

Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

A curated list of amazingly awesome Cybersecurity datasets

Generic Signature Format for SIEM Systems

Wazuh - Ruleset

A small JavaScript library to generate YouTube-like ids from numbers.

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

BSM based intrusion detection system

A Suricata Docker image.

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

The DearBytes remote integrity tool is an IDS (Intrusion Detection System) that keeps track of files on a remote server and logs an event if a file gets added, removed or modified.

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

Zeek IDS Dockerfile

BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.

高效的分布式id生成器，每个客户端实例tps可达到100万，服务端毫无压力。即使服务端宕机了，id生成依然可用。支持多数据中心，支持id加密。

An extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS

Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...

Hashids implementation in Rust

Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.

Real-time detection and defense against malicious network activity and policy violations (exploits, port-scanners, advertising, telemetry, state surveillance, etc.)

Wazuh - Amazon AWS Cloudformation

Easily Expandable Wireless Intrusion Detection System

Yara powered NIDS with high speed packet capture powered by PF_RING

Detect x86 shellcode in files and traffic.

Machine learning based Intrusion detection system (IDS)

❄️ Extract links, ids, and names from a youtube playlist

IDS using a port mirror, Snort and an alert -> RESTCONF utility

Wazuh - Ansible playbook

An IDS implementation using machine learning

Wazuh - Tools for packages creation

Super short, fully unique, non-sequential and URL-friendly Ids

Hashids, ported for Perl

A kubernetes controller running on bare-metal firewalls, creating nftables rules, configures suricata, collects network metrics

UTM Firewall on OpenBSD

A script using Docker to quickly bring up some honeypots exposing lots of services. For research, reconnaissance, and fun. (DISCLAIMER may not be fun, not to be taken internally, aim away from face)