Detects process injection and memory manipulation used by malware. Finds RWX regions, shellcode patterns, API hooks, thread hijacking, and process hollowing. Built in Rust for speed. Includes CLI a…

A rewrite of YARA in Rust.

A list of JARM hashes for different ssl implementations used by some C2/red team tools.

Collection of various open-source an commercial rulesets for NIDS (especially for Suricata and Snort)

A network packet synthesis language

Pcap search and API written in Rust

The tool for updating your Suricata rules.

Libcap-ng is a library for Linux that makes using posix capabilities easy.

Stenographer is a packet capture solution which aims to quickly spool all packets to disk, then provide simple, fast access to subsets of those packets. Discussion/announcements at stenographer@goo…

High-performance regular expression matching library

Suricata is a network Intrusion Detection System, Intrusion Prevention System and Network Security Monitoring engine developed by the OISF and the Suricata community.

Mysqltcl allows to connect Mysql-Database from Tcl scripting language.

PAM script module will allow you to execute scripts during authorization, password changes and sessions. This is very handy if your current security application has no pam support but is accessable…