Daemon to ban hosts that cause multiple authentication errors

OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.

[archived] 一款实验性质的主机入侵检测系统

Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.

By Kprobe technology Open Source Host-based Intrusion Detection System(HIDS), from E_Bwill.

A Linux Host-based Intrusion Detection System based on eBPF.

A golang ebpf libary based on cilium/ebpf and datadog/ebpf.

Hades is a Host-Based Intrusion Detection System based on eBPF(mainly)

恶意IP全自动封禁平台。支持收集如下安全设备告警：长亭WAF社区版（SafeLine）、微步蜜罐HFish、奇安信天眼、奇安信椒图、绿盟WAF、科来网络安全分析审计系统。支持如下设备联动封禁：RouterOS、OPNsense、CheckPoint、奇安信防火墙、旁路阻断（无需设备配合）

Install open-source software from source to focus on Zero Trust Network principles, enhancing security for existing applications, and deploying tools for threat detection and prevention.

This tool parses log data and allows to define analysis pipelines for anomaly detection. It was designed to run the analysis with limited resources and lowest possible permissions to make it suitable for production server use.

GO开发而成，用于NIDS HIDS 分析的规则引擎，使用WorkerPool 高性能检测，支持多字段 "和" "或" 检测， 支持频率检测

Express security essentials deployment for Linux Servers

A HIDS (host-based intrusion detection system) for verifying the integrity of a system.

使用 cgroups + etcd + kafka + netlink-connector 开发而成的hids的架构，agent 部分使用go 开发而成， 会把采集的数据写入到kafka里面，由后端的规则引擎（go开发而成）消费，配置部分以及agent存活使用etcd。

ALPHA/WIP for OSquery configuration for Mac and Linux Operating Systems

Scripts to deploy virtual testbed for log data analysis and anomaly detection.

🚨an osquery powered, almost cross platform HIDS

A method for grouping, clustering, and merging semi-structured alerts

一款linux下的安全产品目的是满足个人安全需求有SSH爆破防护和SYN攻击扫描防护功能,基于netfilter,