Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

Optimizing Smart Home Intrusion Detection with Harmony-Enhanced Extra Trees

Machine Learning Network Intrusion Detection System

heiDGAF - a machine learning based DNS inspector to detect DGAs in the wild!

A personal static website built hosted on GitHub Pages

Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.

This repository includes code for the paper "Towards Autonomous Cybersecurity: An Intelligent AutoML Framework for Autonomous Intrusion Detection" accepted in AutonomousCyber, ACM CCS, 2024.

CANtropy: Time Series Feature Extraction-Based Intrusion Detection Systems for Controller Area Networks

A vulnerable honeypot setup using Flask and SSH to capture and analyze malicious activities. Includes real-time logging and monitoring to study attack patterns and exploit attempts

NetFortress is an Intrusion Detection System (IDS), advanced network security solution designed to safeguard your network infrastructure.

This project focuses on utilising external adversary nodes with passive listening to accurately detect IDS positions in Underwater Acoustic Networks (UWANs), while mapping network topology and identifying potential blind spots for strategic vulnerability exploitation.

Anomaly-Based Network Intrusion Detection System

source code for USENIX Security paper xNIDS

A python-based Network Intusion Detection System, for every one.

We designed an IoT based intrusion detection system using ALMA, which is an online machine learning algorithm.

Sandfly Security Agentless Compromise and Intrusion Detection System For Linux

A Graph Neural Network-based Intrusion Detection System

use convolutional neural networks (CNNs) and transfer learning techniques to develop intrusion detection systems. Ensemble learning and hyperparameter optimization techniques are also used to achieve optimized model performance.