🚨an osquery powered, almost cross platform HIDS
-
Updated
Sep 6, 2018 - Go
🚨an osquery powered, almost cross platform HIDS
GO开发而成,用于NIDS HIDS 分析的规则引擎,使用WorkerPool 高性能检测,支持多字段 "和" "或" 检测, 支持频率检测
使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构,agent 部分使用go 开发而成, 会把采集的数据写入到kafka里面,由后端的规则引擎(go开发而成)消费,配置部分以及agent存活使用etcd。
Add a description, image, and links to the hids topic page so that developers can more easily learn about it.
To associate your repository with the hids topic, visit your repo's landing page and select "manage topics."