Open Hub
Open Hub

Tags : Browse Projects

Select a tag to browse associated projects and drill deeper into the tag cloud.

Snort

Compare

  Analyzed 1 day ago

Snort is a lightweight network intrusion detection system, capable of performing real-time traffic analysis and packet logging on IP networks. It can perform protocol analysis, content searching/matching and can be used to detect a variety of attacks and probes, such as buffer overflows, stealth ... [More] port scans, CGI attacks, SMB probes, OS fingerprinting attempts, and much more. Snort uses a flexible rule based language to describe traffic that it should collect or pass, and a modular detection engine. Snort has a real-time alerting capability, with alert mechanisms for syslog, a user specified file, a UNIX socket, or WinPopup messages to Windows clients using Samba's smbclient. [Less]

382K lines of code

13 current contributors

about 2 months since last commit

89 users on Open Hub

High Activity
4.09091
   
0 Reviews
I Use This
Mostly written in C++
Licenses: gpl
Tags analysis bsd c detection ethernet firewall hacking ids infosec inline intrusion ips 32 more...

ClearOS

Compare

  Analyzed over 1 year ago

ClearOS is an integrated network server gateway solution for small and distributed organizations. The software provides all the necessary server tools to run an organization including email, antivirus, antispam, file sharing, groupware, VPN, firewall, intrusion detection/prevention, content ... [More] filtering, bandwidth management, multi-WAN and more. Through the intuitive web-based management console, an administrator can configure local ClearOS server software along with integrated cloud-based services. [Less]

1.04M lines of code

42 current contributors

over 2 years since last commit

26 users on Open Hub

Activity Not Available
5.0
 
1 Review
I Use This
Mostly written in PHP
Licenses: gpl
Tags antispam antivirus clearos cloud content_filter distro flexshare google_apps ids ips ipsec multiwan 8 more...

ModSecurity

Compare

  Analyzed over 1 year ago

ModSecurity is a web application firewall that can work either embedded or as a reverse proxy. It provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.

387K lines of code

38 current contributors

over 1 year since last commit

21 users on Open Hub

Activity Not Available
4.0
   
0 Reviews
I Use This
Mostly written in C
Licenses: apache_2
Tags apache2 c ids ips security waf web

Suricata IDS/IPS

Compare

  Analyzed 1 day ago

Suricata is a high performance, open source network analysis and threat detection software used by most private and public organizations, and embedded by major vendors to protect their assets.

492K lines of code

37 current contributors

4 days since last commit

20 users on Open Hub

Very High Activity
4.57143
   
0 Reviews
I Use This
Mostly written in C
Licenses: GNU_Gener...
Tags firewall ids inline ips ipv4 ipv6 logging monitoring network packet packetsniffer pcap 6 more...

PHPIDS

Compare

  Analyzed about 13 hours ago

PHPIDS (PHP-Intrusion Detection System) is a simple to use, well structured, fast and state-of-the-art security layer for your PHP based web application. The IDS neither strips, sanitizes nor filters any malicious input, it simply recognizes when an attacker tries to break your site and reacts in ... [More] exactly the way you want it to. Based on a set of approved and heavily tested filter rules any attack is given a numerical impact rating which makes it easy to decide what kind of action should follow the hacking attempt. This could range from simple logging to sending out an emergency mail to the development team, displaying a warning message for the attacker or even ending the user’s session. [Less]

50.1K lines of code

0 current contributors

over 11 years since last commit

14 users on Open Hub

Inactive
4.4
   
0 Reviews
I Use This
Mostly written in PHP
Licenses: lgpl3
Tags attacks csrf detection directory dt exploit filter hacking header ids injection injections 13 more...

Prelude SIEM

Compare

  Analyzed about 22 hours ago

Prelude SIEM is a Security Information and Event Management system, for all available security application, opensource or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard (RFC 4765) ... [More] , that enables different kinds of sensors to generate events using an unified language. Prelude SIEM benefits from its ability to find traces of malicious activity from different sensors (Snort, Suricata, OSSEC, Wazuh, honeyd, Samhain, over 30 types of systems logs, and others) in order to better verify an attack and in the end to perform automatic correlation between the various events. Prelude SIEM is commited to providing a SIEM that offers the ability to unify currently available tools. [Less]

451K lines of code

6 current contributors

over 5 years since last commit

12 users on Open Hub

Inactive
4.83333
   
0 Reviews
I Use This
Mostly written in C
Licenses: gpl
Tags cybersecurity detection firewall forensics hacking hids ids infosec intrusion linux logger logmanagement 8 more...

IPFire

Compare

  Analyzed 6 months ago

IPFire is new-developed firewall build with the latest releases of linux 2.6 and tools. You are able to install a lot of addons and you will see a firewall can become a home server.

182K lines of code

24 current contributors

6 months since last commit

12 users on Open Hub

Activity Not Available
4.0
   
0 Reviews
I Use This
Mostly written in Perl
Licenses: gpl3_or_l...
Tags dhcp distribution distro dns email filter firewall gateway hardened_linux home http ids 27 more...

Bro

Compare

  No analysis available

0 lines of code

47 current contributors

0 since last commit

10 users on Open Hub

Activity Not Available
5.0
 
0 Reviews
I Use This
Mostly written in language not available
Licenses: No declared licenses
Tags bro forensics ids intrusiondetection intrusionprevention network_forensics network_monitoring networkmonitoring network_security networksecurity security

IronBee

Compare

  Analyzed 1 day ago

Led by the team who designed and built ModSecurity, the new project aims to produce a web application firewall sensor that is secure, high-performing, portable, and freely available – even for commercial use. Hosted at the web site www.ironbee.com, the project is open to all parties interested in joining the development effort.

235K lines of code

0 current contributors

about 10 years since last commit

6 users on Open Hub

Inactive
3.0
   
0 Reviews
I Use This
Mostly written in C
Licenses: apache_2
Tags apache2 detection firewall hacking ids infosec inline intrusion ips mod-security monitoring network 8 more...

Openwall - scanlogd

Compare

  Analyzed about 4 hours ago

scanlogd is a TCP port scan detection tool, originally designed to illustrate various attacks an IDS developer has to deal with, for a Phrack Magazine article. Thus, unlike some of the other port scan detection tools out there, scanlogd is designed to be totally safe to use. scanlogd supports ... [More] several packet capture interfaces: the raw socket interface on Linux (which does not require any libraries), libnids, and libpcap. [Less]

638 lines of code

0 current contributors

almost 5 years since last commit

5 users on Open Hub

Inactive
0.0
 
0 Reviews
I Use This
Mostly written in C
Licenses: BSD-3-Clause
Tags detection ids infosec intrusion linux logging monitoring networking portscan security sysadmin systems_administration 2 more...