dcept
Logon monitor
A system for detecting and responding to potential insider threats in an Active Directory environment by monitoring for unauthorized logon attempts
A tool for deploying and detecting use of Active Directory honeytokens
498 stars
73 watching
102 forks
Language: Python
last commit: over 3 years ago
Linked from 1 awesome list
paralax/awesome-honeypotsRelated projects:
| Repository | Description | Stars |
|---|---|---|
 sanathp/statusok | A tool to monitor website and API response times, sending notifications when issues occur. | 1,626 |
 sqall01/lsms | A collection of scripts to monitor Linux system security and performance. | 318 |
 dani3l0/status | A lightweight system monitoring tool that provides real-time information about a Linux server's status and performance | 170 |
 travisfsmith/sweetsecurity | A toolset for setting up and managing network security monitoring systems on Raspberry Pi-like devices. | 779 |
 shellster/dcsyncmonitor | Detects unauthorized Domain Controller synchronization attempts and logs alerts to the Windows Event Log. | 138 |
 pjlantz/hale | A tool for monitoring and analyzing command & control networks of botnets | 188 |
 boostsecurityio/poutine | Detects misconfigurations and vulnerabilities in software supply chains during build pipelines. | 239 |
 cgosec/blauhaunt | A tool collection for analyzing and visualizing logon events to help answer security-related questions | 164 |
 gpulido/swarmalert | An application that monitors Docker Swarm services and sends notifications when any service becomes unavailable. | 21 |
 p0dalirius/ldapmonitor | A tool that monitors LDAP objects in real-time during pentests or system administration. | 843 |
 simplystaking/panic | A monitoring and alerting system for blockchain nodes | 85 |
 droe/xnumon | Monitors macOS systems for malicious activity by tracking process activity and system calls | 230 |
 stamusnetworks/selks | An integrated security monitoring platform using Suricata and Elasticsearch to analyze network traffic and alerts | 1,492 |
 lennolium/swiftguard | A macOS application that detects and prevents unauthorized USB device activity on a computer. | 337 |
 rshipp/python-dshield | Provides an interface to retrieve real-time information on internet connectivity and security issues | 29 |