200 Open source projects that are alternatives of or similar to Tr1pd

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

[WIP] Anti-Forensics ToolKit to clear post-intrusion sensible logfiles 🔥 (For Research Only)

An Intrusion Detection System library loosely based on PHP IDS

A tool to help forensicate offline docker acquisitions

Enhanced version of dd for forensics and security

A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.

A Linux packet crafting tool.

Pre-connection attacks, gaining access & post-connection attacks on WEP, WPA & WPA2. 🛰✔️

A utility to generate malicious network traffic and evaluate controls

Rootkit Detector for UNIX

SQL powered operating system instrumentation, monitoring, and analytics.

A boot record parser that identifies known good signatures for MBR, VBR and IPL.

Network Intrusion Detection KDDCup '99', NSL-KDD and UNSW-NB15

Malicious traffic detection system

Security Onion 16.04 - Linux distro for threat hunting, enterprise security monitoring, and log management

Web browser forensics for Google Chrome/Chromium

Extract BITS jobs from QMGR queue and store them as CSV records

SIFT

Libellux: Up & Running provides documentation on how-to install open-source software from source. The focus is Zero Trust Network to enhance the security for existing applications or install tools to detect and prevent threats.

Database security suite. Database proxy with field-level encryption, search through encrypted data, SQL injections prevention, intrusion detection, honeypots. Supports client-side and proxy-side ("transparent") encryption. SQL, NoSQL.

Jenkins plug-in that mines and analyzes data from a Git repository

macOS Artifact Parsing Tool

Salt States for Configuring the SIFT Workstation

operative framework is a OSINT investigation framework, you can interact with multiple targets, execute multiple modules, create links with target, export rapport to PDF file, add note to target or results, interact with RESTFul API, write your own modules.

Anomaly Detection on Time-Evolving Streams in Real-time. Detecting intrusions (DoS and DDoS attacks), frauds, fake rating anomalies.

A Windows Batch script and a Unix Bash script to comprehensively collect host forensic data during incident response.

Implementation of the famous Image Manipulation\Forgery Detector "ManTraNet" in Pytorch

Wazuh - Ruleset

Awesome Forensics Resources. Almost 300 open source forensics tools, and 600 blog posts about forensics.

psad: Intrusion Detection and Log Analysis with iptables

Anomaly Detection on Dynamic (time-evolving) Graphs in Real-time and Streaming manner. Detecting intrusions (DoS and DDoS attacks), frauds, fake rating anomalies.

A tool for forensic file system reconstruction.

OSINT Swiss Army Knife

Free Security and Hacking eBooks

Tracking history of USB events on GNU/Linux

Wipe files and drives securely with randoms ASCII dicks

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version.

BSM based intrusion detection system

Diffy is a triage tool used during cloud-centric security incidents, to help digital forensics and incident response (DFIR) teams quickly identify suspicious hosts on which to focus their response.

A HIDS (host-based intrusion detection system) for verifying the integrity of a system.

swap_digger is a tool used to automate Linux swap analysis during post-exploitation or forensics. It automates swap extraction and searches for Linux user credentials, web forms credentials, web forms emails, http basic authentication, Wifi SSID and keys, etc.

RAIR: RAdare In Rust

Wazuh - Chef cookbooks

Illuminant inconsistencies for image splicing detection in forensics

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

Detect and warn about suspicious IPs logging into Nextcloud

By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.

An Ubuntu 16.04 build containing Suricata, PulledPork, Bro, and Splunk

Volatility plugin for extracts configuration data of known malware

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

Daemon to ban hosts that cause multiple authentication errors

macOS triage is a python script to collect various macOS logs, artifacts, and other data.

Docker image for hacking

A single file container/archive that can be reconstructed even after total loss of file system structures

Wazuh - Puppet module

Android Apps, Roms and Platforms for Pentesting

Powerful checksum generator!

Alcide Kubernetes Audit Log Analyzer - Alcide kAudit

Educational, CTF-styled labs for individuals interested in Memory Forensics