bigbrobro
Follow
Stars
Real-time attack-path aware intrusion detection system with streaming detection and graph-based risk analysis.
Proof-carrying cost cuts and AWS attack-path analysis (local, read-only CLI).
Automating situational awareness for cloud penetration tests.
Fanout is a GO program which reads a Kafka stream and writes Parquet files into S3
a targeted attacks method on malicious traffic detection
Proxilion MCP Security Gateway is a self-hosted, Docker-ready security gateway that provides real-time threat detection (<50ms P95 latency) against insider threats, compromised accounts, and rogue …
Analyzed system memory using tools like Volatility and Rekall to detect advanced threats, hidden malware, and suspicious processes. Focused on real-time threat detection, incident response, and und…
A comprehensive security checklist for MCP-based AI tools. Built by SlowMist to safeguard LLM plugin ecosystems.
Incremental Behavioral Pattern Matching Algorithm over the System Audit Event Stream for APT Detection
OCR-APT: Reconstructing APT Stories through Subgraph Anomaly Detection and LLMs.
SharpEye: Advanced Linux Intrusion Detection and Threat Hunting System
Machine learning algorithms applied on log analysis to detect intrusions and suspicious activities.
IoT Attack Detection with machine learning
Argus 取名自希腊神话中的"百眼巨人" (Argus Panoptes)这是一款专为应急响应、威胁狩猎设计的现代化跨平台安全工具,致力于提供更隐蔽、更强大、更智能的威胁检测能力。
Yet Another Memory Analyzer for malware detection and Guarding Operations with YARA and SIGMA
This repository includes code for the paper “Toward Autonomous and Efficient Cybersecurity: A Multi Objective AutoML based Intrusion Detection System” published in IEEE TMLCN, implementing AutoML a…
应急分析溯源日志工具:一个功能强大的Web日志安全分析工具,集成了规则引擎、AI智能分析和多格式报告生成,专为安全应急响应和威胁溯源而设计。
Repo to hold wazuh manager mcp server
A secure low code honeypot framework, leveraging AI for System Virtualization.
Advanced Wazuh Rules for more accurate threat detection. Feel free to implement within your own Wazuh environment, contribute, or fork!