62 Open source projects that are alternatives of or similar to Anomaly-detection-system

The DearBytes remote integrity tool is an IDS (Intrusion Detection System) that keeps track of files on a remote server and logs an event if a file gets added, removed or modified.

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

Generic Signature Format for SIEM Systems

🚌 The missing link to connect open-source threat intelligence tools.

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

Super short, fully unique, non-sequential and URL friendly Ids

Quantum Insert

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

A script using Docker to quickly bring up some honeypots exposing lots of services. For research, reconnaissance, and fun. (DISCLAIMER may not be fun, not to be taken internally, aim away from face)

高效的分布式id生成器，每个客户端实例tps可达到100万，服务端毫无压力。即使服务端宕机了，id生成依然可用。支持多数据中心，支持id加密。

Fastest UUID with cryptographic PRNG for JS

Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.

Daemon to ban hosts that cause multiple authentication errors

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

A kubernetes controller running on bare-metal firewalls, creating nftables rules, configures suricata, collects network metrics

A small JavaScript library to generate YouTube-like ids from numbers.

Suricata git repository maintained by the OISF

A Suricata Docker image.

Wazuh - Tools for packages creation

Zeek IDS Dockerfile

Bro IDS Dockerfile

Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...

** README ** This repo has MOVED to https://github.com/quadrantsec/sagan

Wazuh - Amazon AWS Cloudformation

Suitably random and reasonably unique human readable (and fairly adorable) ids

Yara powered NIDS with high speed packet capture powered by PF_RING

Open-Source Security Architecture | 开源安全架构

WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices

A Suricata based IDS/IPS distro

Hashids, ported for Perl

A small PHP library to generate YouTube-like ids from numbers. Use it when you don't want to expose your database ids to the user.

Open Source EDR for Windows

A curated list of amazingly awesome Cybersecurity datasets

An IDS implementation using machine learning

Wazuh - Ruleset

Wazuh - The Open Source Security Platform

Web Based Event Viewer (GUI) for Suricata EVE Events in Elastic Search

UTM Firewall on OpenBSD

BSM based intrusion detection system

The tool for updating your Suricata rules.

IDS using a port mirror, Snort and an alert -> RESTCONF utility

Detect x86 shellcode in files and traffic.

An UNOFFICIAL Git Repository of Snort Rules(IDS rules) Releases.

BRO/Zeek IDS content pack contains pipeline rules, a stream, a dashboard displaying interesting activity, and a syslog tcp input to capture and index BRO/Zeek logs coming from a remote sensor.

Whenever founds internet connectivity confirms is it you, if not log you off and send you image of intruder.

An extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS

64 bit ID Generator

Hashids implementation in Rust

Super short, fully unique, non-sequential and URL-friendly Ids

Real-time detection and defense against malicious network activity and policy violations (exploits, port-scanners, advertising, telemetry, state surveillance, etc.)

Real-time HTTP Intrusion Detection

Easily Expandable Wireless Intrusion Detection System

Wazuh - Kibana plugin

🤖 Id obfuscation based on Knuth's multiplicative hashing method for PHP.

❄️ Extract links, ids, and names from a youtube playlist

Wazuh - Ansible playbook

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

Wazuh - Docker containers

Wazuh - Chef cookbooks