425 Open source projects that are alternatives of or similar to Network Intrusion Detection

Libellux: Up & Running provides documentation on how-to install open-source software from source. The focus is Zero Trust Network to enhance the security for existing applications or install tools to detect and prevent threats.

Cisco Press CCNA Cyber Ops Books and Video Courses supplemental information and additional study materials.

Public Repository of Open Source Tools for Cyber Threat Intelligence Analysts and Researchers

Hybrid Port Knocking System

gonids is a library to parse IDS rules, with a focus primarily on Suricata rule compatibility. There is a discussion forum available that you can join on Google Groups: https://groups.google.com/forum/#!topic/gonids/

Solutions to kdd99 dataset with Decision tree and Neural network by scikit-learn

CyberScan: Network's Forensics ToolKit

Malware similarity platform with modularity in mind.

🎩 [penetration testing Book], Kali Magic, Cryptography, Hash Crack, Botnet, Rootkit, Malware, Spyware, Python, Go, C|EH.

Hacking, pen-testing, and cyber-security related tools built with Python.

Make your own BadUSB device!

AFLNW: network wrapper for AFL

This is the main repository of International Data Spaces Association on GitHub, where you can find general overview and required information on IDS Open Source Landscape.

A concise, directive, specific, flexible, and free incident response plan template

Chepy is a python lib/cli equivalent of the awesome CyberChef tool.

An extremely crude, lightweight Web Frontend for Suricata/Bro to be used with BriarIDS

A semi-curated list of Security Feeds

Threat Hunting queries for various attacks

A fully automatic wifi deauther coded in Python

OpenCTI Python Client

Security guidance from the MOJ Digital & Technology Cybersecurity team

A distributed peer to peer list of bad actor IP addresses and phone numbers collected via a SIP Honeypot.

Comprehensive Web Based Phishing Suite for Rapid Deployment and Real-Time Alerting!

Stop half-done API specifications! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by validating your API specifications.

Aggregated Indicators of Compromise collected and cross-verified from multiple open and community-supported sources, enriched and ranked using our intelligence platform for you. Threat Intelligence, Threat feed, Open source feed.

SIKE for Java is a software library that implements experimental supersingular isogeny cryptographic schemes that aim to provide protection against attackers running a large-scale quantum computer.

BSM based intrusion detection system

一款适用于红蓝对抗中的仿真钓鱼系统

Cyber Incident Response Team Playbook Battle Cards

psad: Intrusion Detection and Log Analysis with iptables

Network Tools

Malware Machine Learning

Argus Advanced Remote & Local Keylogger For macOS and Windows

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

基于Threathunting-book基础上完善的狩猎视角红队handbook

An Awesome List of Moroccan Cyber Security Researchers, Pentesters, Bug Hunters.

Advanced search in search engines, enables analysis provided to exploit GET / POST capturing emails & urls, with an internal custom validation junction for each target / url found.

An Intrusion Detection System library loosely based on PHP IDS

Python based tool to extract forensic info from EventTranscript.db (Windows Diagnostic Data)

This repository is used to store answers when resolving ctf challanges, how i came to that answer and the line of thought used to reach it.

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit ARM & 64-bit ARM architectures.

A humble, and fast, security-oriented HTTP headers analyzer

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

Discover the attack surface and prioritize risks with our continuous Attack Surface Management (ASM) platform - Sn1per Professional #pentest #redteam #bugbounty

Subdomain takeover vulnerability checker

Stamp your code with a trackable digital copyright

⚔️MITRE ATT&CK Machinations in R

A website and framework for testing NIDS detection

Identify servers running various SSL VPNs based on protocol-specific behaviors

🔑 Hash type identifier (CLI & lib)

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

Provides various Windows Server Active Directory (AD) security-focused reports.

A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)

adversarial examples, adversarial malware examples, adversarial malware detection, adversarial deep ensemble, Android malware variants

Repository of my CTF writeups

Graphical Web interface developed to facilitate the use of security information tools.

OpenCTI connectors

Passive DNS Common Output Format

Cloud Container Attack Tool (CCAT) is a tool for testing security of container environments.

An open library of adversary emulation plans designed to empower organizations to test their defenses based on real-world TTPs.