auditd-attack
Attack detection framework
A Linux Auditd rule set designed to detect and hunt specific attack patterns in Linux systems.
A Linux Auditd rule set mapped to MITRE's Attack Framework
778 stars
62 watching
127 forks
last commit: over 4 years ago attack-detectionauditdlinuxmitre-attackthreat-hunting
Related projects:
| Repository | Description | Stars |
|---|---|---|
 dustyfresh/php-vulnerability-audit-cheatsheet | A collection of grep commands to help find potentially vulnerable PHP code | 346 |
 threathunters-io/laurel | Transforms Linux audit logs into standardized, human-readable format for security monitoring | 711 |
 ad-attacks/active-directory-penetration-testing | A comprehensive resource for learning and practicing penetration testing on Active Directory infrastructures | 16 |
 mitre/advmlthreatmatrix | A framework to help security analysts understand and prepare for adversarial machine learning attacks on AI systems | 1,050 |
 eth-sri/bayes-framework-leakage | Develops and evaluates a framework for detecting attacks on federated learning systems | 11 |
 neo23x0/auditd | A comprehensive auditd configuration tailored to Linux distributions, focusing on security and performance. | 1,497 |
 horsicq/nauz-file-detector | Identifies and determines properties of executable files using various analysis techniques | 525 |
 jeremy313/fl-wbc | A defense mechanism against model poisoning attacks in federated learning | 37 |
 pathtofile/bad-bpf | Demonstrates security vulnerabilities in the Linux kernel's eBPF system | 549 |
 palantir/alerting-detection-strategy-framework | A framework for developing and managing alerting strategies to improve incident response | 689 |
 cybersecurityup/mitre-attack-matrix | A comprehensive resource for understanding and visualizing the relationships between different types of cyber attacks and their tactics, techniques, and procedures. | 18 |
 kpcyrd/authoscope | Tools and scripts for cracking custom network authentication systems | 400 |
 ai4risk/antifraud | Develops and evaluates machine learning models for detecting financial fraud | 174 |
 ekultek/whatbreach | An OSINT tool to discover breaches related to email addresses. | 1,179 |
 yflyl613/fedrec | A PyTorch implementation of an attack and defense mechanism against Federated Recommendation Systems | 21 |