Search Results for "ids ips"
Sort By:
Showing 30 open source projects for "ids ips"
View related business solutions-
Gen AI apps are built with MongoDB AtlasMongoDB Atlas is the developer-friendly database used to build, scale, and run gen AI and LLM-powered apps—without needing a separate vector database. Atlas offers built-in vector search, global availability across 115+ regions, and flexible document modeling. Start building AI apps faster, all in one place.
-
Deliver trusted data with dbtData teams use dbt to codify business logic and make it accessible to the entire organization—for use in reporting, ML modeling, and operational workflows.
-
1
SELKS
A Suricata based IDS/IPS/NSM distro
SELKS is a free and open source Debian-based IDS/IPS/Network Security Monitoring platform released under GPLv3 from Stamus Networks. SELKS can be installed via docker-compose on any Linux or Windows OS. Once installed it is ready to use out of the box solution. SELKS ISOs are also available for air-gapped environments or bare metal or VM installation. SELKS is a showcase of what Suricata IDS/IPS/NSM can do and the network protocol monitoring logs and alerts it produces. ... -
2
tcpreplay
edit and replay captured network traffic
tcpreplay is a suite of tools to edit and replay captured network traffic.">
-
3
TTOS Linux
Desktop Linux Operating System
TTOS Linux is a desktop linux operating system based on Debian Linux. It includes many custom utilities TTOS Specific to separate it from other debian variants.">
-
4
Bit-Twist (Packet generator/editor)
Packet generator and packet editor for Windows, Linux, BSD, and macOS
...Bit-Twist is designed for exceptional speed, allowing you to edit 10 million packets in under 3 seconds and send them over a live network at throughput levels that match your NIC's maximum line rate, up to 10 Gbps. Bit-Twist is ideal for simulating network traffic and scenarios, testing firewalls, IDS, IPS, routers, switches, load balancers, and other network equipment, as well as troubleshooting various network issues. https://bittwist.sourceforge.io / ayeowch@gmail.com -
Top Corporate LMS for Training | Best Learning Management SoftwareAxis LMS enables you to deliver online and virtual learning and training through a scalable, easy-to-use LMS that is designed to enhance your training, automate your workflows, engage your learners and keep you compliant.
-
5
NethServer
Linux for for small offices and medium enterprises
...Based on CentOS, the product's main feature is a modular design which makes it simple to turn the distribution into a mail server and filter, web server, groupware, firewall, web filter, IPS/IDS or VPN server. A comprehensive web-based user interface simplifies common administration tasks and enables single-click installation of several pre-configured modules. Stay tuned with NethServer 8! Follow the links on http://www.nethserver.org for more information -
6
PulledPork
Pulled Pork for Snort and Suricata rule management (from Google code)
PulledPork is a Perl-based script that automates the management of Snort and Suricata IDS/IPS rulesets. It streamlines the process of downloading, parsing, and updating rules, ensuring that intrusion detection systems remain current and effective. -
7
============ ***IMPORTANT*** PLEASE NOTE THAT PYTBULL IS NO LONGER MAINTAINED AND HAS BEEN PORTED BY netrunn3r HERE: https://github.com/netrunn3r/pytbull-ng. YOU SHOULD USE pytbull-ng INSTEAD. THANK YOU. ============ pytbull is an Intrusion Detection/Prevention System (IDS/IPS) Testing Framework for Snort, Suricata and any IDS/IPS that generates an alert file. It can be used to test the detection and blocking capabilities of an IDS/IPS and to validate config.
-
8
RHIPS
Rhythm Host Intrusion Prevent System is a log file monitor IDS/IPS
Rhythm Host Intrusion Prevention System is a log file monitor IDS/IPS for Windows. RHIPS can alert you via email when it matches detection criteria or execute a custom command. For alerting and response specify the number of instances before alerting or taking action. If specifying a command action another command can be run later on a timed basis. Port to IP address correlation allows for the connecting IP address to be identified and action taken against it. -
9
VorumServer 2 SecureLAN
Virtual Security Appliance Firewall pfSense amd64 2.3
Virtual Security Appliance (Firewall) develop in pfSense amd64 2.3 for VMware/VirtualBox. URL: https://www.javcasta.com/vorumserver2/ Download: http://www.javcasta.com/?smd_process_download=1&download_id=18699 -
FusionAuth: Authentication and User Management SoftwareFusionAuth adds login, registration, SSO, MFA, and a bazillion other features to your app in days - not months.
-
10
ospfdiscoverysnmp
OSPF network discovery script via SNMP.
...After providing necessary info and the OSPF info is gathered, the user has three choices: display the OSPF routers info on the screen, export the data to a file for Excel importing and generate the OSPF topology showing neighborships, router IDs and neighbor IPs. Tools used for coding and testing: Python 2.7.3, PySNMP, GNS3, Linux. Tested on Cisco 2621, 2691, 3660. -
11
A simple packet crafting tool that turns text commands into pcaps. Optionally build a DAQ and Snort can directly read commands or raw payload data - no pcap required. Packets can exhibit any flaw or anomaly desired. Syntax is flexible and powerful.
-
12
wafep
Web Application Firewall Evaluation Project
WAFEP is designed to assess the attack vector support of web application firewalls and application IDS/IPS modules. It operates through an "attacker website" with links, forms, browser controls and other request initiators which send a collection of malicious payloads through the WAF to a target application, which in turn, checks which payloads were blocked and which passed successfully. The WAFEP application serves as both the "attacker" website and the "target" website, and thus, should ideally be used in twin instances - one BEHIND the WAF (the defender/target website), and another before the WAF (the attacker website). ... -
13
libnetfilter_queue threads example
complex example using libnetfilter_queue for analyze packets
using iptables rules for redirect traffic to queues, the main function create array of threads, each thread connect to different queue, when packet arrived to the queue a callback function start to analyze the packet and drop it if it's found specific string in the payload, this mechanism can help you build IPS/IDS/WAF applications. add libraries to the linker pthread,netlink and libnetfilter_queue, make sure libnetfilter_queue installed in your system: #: yum install libnetfilter_queue #: yum install libnetfilter_queue-devel -
14
Network Signature Manager (N.S.M) Lite
Manage your Snort rules with N.S.M.
N.S.M Lite is a simple and easy way to manage your signatures for your Snort based IDS/IPS implementation, which can improve IDS/IPS signature development for accurate detection of malicious malware. Additionally, N.S.M can be used a learning tool to help you understand the complex nature of Intrusion Detection and/or Prevention (IDP) signatures for the Snort platform. -
15
ESSPEE - Penetration Testing & Forensics
(Android Forensics & Malware Analysis Included)
ESSPEE - Extreme Security Scanning Penetration testing & Exploitation Environment Ubuntu 12.04 LTS (Precise Pangolin) is purposefully selected as the base Operating System to obtain supports from Ubuntu for a long duration (till Apr 2017). It is packed with featured security tools with very less resource consumption and higher degree of stability. Thanks to Back Track, Blackbuntu, CAINE and DEFT and many others for inspiration. Being a sole developer to this distro, I wish it... -
16
Smooth-Sec
IDS/IPS Linux distribution.
Smooth-Sec is a lightweight and fully-ready IDS/IPS (Intrusion Detection/Prevention System) Linux distribution based on Debian 7 (wheezy), available for 32 and 64 bit architecture. The distribution includes the latest version of Snorby, Snort, Suricata, PulledPork and Pigsty. An easy setup process allows to deploy a complete IDS/IPS System within minutes, even for security beginners with minimal Linux experience. -
17
Mole
Automatic SQL Injection Exploitation Tool
Mole is an automatic SQL Injection exploitation tool. Only by providing a vulnerable URL and a valid string on the site it can detect the injection and exploit it, either by using the union technique or a boolean query based technique. The Mole uses a command based interface, allowing the user to indicate the action he wants to perform easily. The CLI also provides auto-completion on both commands and command arguments, making the user type as less as possible. -
18
mikrotik-ips-ids
IDS + IPS for RouterOS (mikrotik)
This project reads logs from your mikrotik firewall and creates an address list with detected attackers -
19
The goal of this project is to create a conversion utility to translate custom Snort rules into a format that can be used on Cisco IDS/IPS device.
-
20
This product is no longer maintained: The author created alternative tools: https://databunker.org/ and https://privacybunker.io/ GreenSQL is a database firewall engine used to protect Open Source Databases from SQL injection attacks. It works in proxy mode. Application logic is based on evaluating of SQL commands using risk score factors, as well as blocking of sensitive commands
-
21
This is an NIDS/HIDS, Network plus Host based Intrusion Detection System. Este é um NIDS / HIDS, Sistema de Detecção de Invasões Baseado em Redes e em Máquinas.
-
22
NetCop is UTM, UTM Firewall, ClamAV Antivirus, Web Cache, Content Filter,IPS/IDS, WAN Link Manager, Bandwidth Manager, Anonymous Proxy Blocker, Wifi Hotspot Controller, SSL VPN, Network Virtulization in single ISO CD distribution.
-
23
An undetectable Remote Administration Tool -OR- trojan, an all new approach. Easily usable, Client just requires any Web Browser to control remote machine via WebPage. Fooling firewalls/ids/ips security solutions, as it operates like any web-site.
-
24
SecurityFusion is an open source network intrusion detection and prevention system based in Hogwash, capable of performing real-time traffic analysis and packet logging on IP networks.
-
25
Netdeep Cop is a security network gateway. It features stateful packet filtering, proxies, content filtering, IDS/IPS and VPN. This project has been started with your code based in IPCop and Smoothwall project.