Daemon to ban hosts that cause multiple authentication errors

Main Sigma Rule Repository

Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.

Wazuh - Ruleset

idstools: Snort and Suricata Rule and Event Utilities in Python (Including a Rule Update Tool)

The tool for updating your Suricata rules.

🚌 Threat Bus – A threat intelligence dissemination layer for open-source security tools.

The buildingSMART Data Dictionary repository, where we publish the documentation, examples and more. We don't publish here the data, the source code of the bSDD service or the front end of the website.

Code for our USENIX Security 2021 paper -- CADE: Detecting and Explaining Concept Drift Samples for Security Applications

Fine-grained access control for AI agents

The Snowflake generator done right.

Simple Implementation of Network Intrusion Detection System. KddCup'99 Data set is used for this project. kdd_cup_10_percent is used for training test. correct set is used for test. PCA is used for dimension reduction. SVM and KNN supervised algorithms are the classification algorithms of project. Accuracy : %83.5 For SVM , %80 For KNN

This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.

A completely automated anomaly detector Zeek network flows files (conn.log).

Fragscapy is a command-line tool to fuzz network protocols by automating the modification of outgoing network packets. It can run multiple successive tests to determine which options can be used to evade firewalls and IDS.

Centralize Management of Intrusion Detection System like Suricata Bro Ossec ...

Real-time detection and defense against malicious network activity and policy violations (exploits, port-scanners, advertising, telemetry, state surveillance, etc.)

这是一个封装了KDDCup99、NSL-KDD、UNSW-NB15等入侵监测数据集的Python包。

Industrial datasets - datasets for evaluating industrial intrusion detection systems on IPAL.

Configuring the Suricata IDS to detect DoS attacks by adding custom rule file.