Open Hub
Black Duck Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

Snort

Compare

  Analyzed about 12 hours ago

Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth ... [More] port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rule based language to describe traffic that it should collect or pass, and a modular detection engine. Snort has a real-time alerting capability, with alert mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba's smbclient. [Less]

342K lines of code

13 current contributors

10 days since last commit

88 users on Open Hub

Moderate Activity
4.09091
   
0 Reviews
I Use This
Mostly written in C++
Licenses: gpl
Tags analysis bsd c detection ethernet firewall hacking ids infosec inline intrusion ips 32 more...

OSSEC

Compare

  Analyzed 28 days ago

148K lines of code

25 current contributors

about 1 year since last commit

16 users on Open Hub

Very Low Activity
4.5
   
0 Reviews
I Use This
Mostly written in C
Licenses: No declared licenses
Tags analysis detection hids intrusion log network rootkit security

PHPIDS

Compare

  Analyzed 12 days ago

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in ... [More] exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session. [Less]

50.1K lines of code

0 current contributors

over 8 years since last commit

14 users on Open Hub

Inactive
4.4
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: lgpl3
Tags attacks csrf detection directory dt exploit filter hacking header ids injection injections 13 more...

Prelude SIEM

Compare

  Analyzed about 10 hours ago

Prelude SIEM is a Security Information and Event Management system, for all available security application, opensource or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard (RFC 4765) ... [More] , that enables different kinds of sensors to generate events using an unified language. Prelude SIEM benefits from its ability to find traces of malicious activity from different sensors (Snort, Suricata, OSSEC, Wazuh, honeyd, Samhain, over 30 types of systems logs, and others) in order to better verify an attack and in the end to perform automatic correlation between the various events. Prelude SIEM is commited to providing a SIEM that offers the ability to unify currently available tools. [Less]

451K lines of code

6 current contributors

over 2 years since last commit

12 users on Open Hub

Inactive
4.83333
   
0 Reviews
I Use This
Mostly written in C
Licenses: gpl
Tags cybersecurity detection firewall forensics hacking hids ids infosec intrusion linux logger logmanagement 8 more...

IronBee

Compare

  Analyzed about 1 hour ago

Led by the team who designed and built ModSecurity, the new project aims to produce a web application firewall sensor that is secure, high-performing, portable, and freely available – even for commercial use. Hosted at the web site www.ironbee.com, the project is open to all parties interested in joining the development effort.

235K lines of code

0 current contributors

about 7 years since last commit

6 users on Open Hub

Inactive
3.0
   
0 Reviews
I Use This
Mostly written in C
Licenses: apache_2
Tags apache2 detection firewall hacking ids infosec inline intrusion ips monitoring network outdated 7 more...

Openwall - scanlogd

Compare

  Analyzed 1 day ago

scanlogd is a TCP port scan detection tool, originally designed to illustrate various attacks an IDS developer has to deal with, for a Phrack Magazine article. Thus, unlike some of the other port scan detection tools out there, scanlogd is designed to be totally safe to use. scanlogd supports ... [More] several packet capture interfaces: the raw socket interface on Linux (which does not require any libraries), libnids, and libpcap. [Less]

638 lines of code

0 current contributors

about 2 years since last commit

5 users on Open Hub

Inactive
0.0
 
0 Reviews
I Use This
Mostly written in C
Licenses: BSD-3-Clause
Tags detection ids infosec intrusion linux logging monitoring networking portscan security sysadmin systems_administration 2 more...

wazuh

Compare

  Analyzed about 5 hours ago

Wazuh - The Open Source Security Platform (OSSEC fork)

622K lines of code

0 current contributors

7 days since last commit

3 users on Open Hub

Very High Activity
0.0
 
0 Reviews
I Use This
Mostly written in C
Licenses: No declared licenses
Tags detectionfirewall forensics hids ids infosec intrusion logger OSSEC

Nova Network Anti-reconnaissance System

Compare

  Analyzed 3 days ago

Nova is a software application for preventing and detecting hostile Network Reconnaissance. It does this by first creating a large array of thin virtual machines on the target network. These VMs are created using an updated Honeyd to be extremely lightweight. They're not your typical VMs that you ... [More] might see from VirtualBox or VMWare. They just appear to be real from the perspective of the network, and run network "services" which are just shell scripts. Second, Nova uses machine learning algorithms to automatically detect and classify attempts at hostile reconnaissance, so there's no need to go searching manually through your honeypot's log files. [Less]

37.2K lines of code

0 current contributors

about 8 years since last commit

2 users on Open Hub

Inactive
5.0
 
0 Reviews
I Use This
Mostly written in C++
Licenses: gpl3_or_l...
Tags antireconnaissance detection honeypot honeypots ids infosec intrusion linux monitoring network networking portscan 2 more...

WebSpidah

Compare

  Analyzed over 3 years ago

WebSpidah is a tactical WASS (Web Application Security Scanner) written in PHP. It has an interactive shell as a user interface, much like the MSF, and a modularized, XML-based, vulnerability recon system. WebSpidah is released under the GPL license.

0 lines of code

0 current contributors

0 since last commit

1 users on Open Hub

Activity Not Available
0.0
 
0 Reviews
I Use This
Mostly written in language not available
Licenses: gpl
Tags audit cross-platform detection hacking injection intrusion scanner security spider technology web

PHPIDS for MODx

Compare

  Analyzed over 3 years ago

PHPIDS for MODx is a plugin and a module for MODx to integrate and advance the using of PHPIDS, a PHP intrusion detection system.

0 lines of code

0 current contributors

0 since last commit

1 users on Open Hub

Activity Not Available
5.0
 
0 Reviews
I Use This
Mostly written in language not available
Licenses: lgpl21
Tags analysis block detection intrusion modx php php5 phpids report security system