pulledpork
psad
pulledpork | psad | |
---|---|---|
2 | 4 | |
415 | 377 | |
- | - | |
0.0 | 0.0 | |
almost 3 years ago | 11 months ago | |
Perl | Perl | |
GNU General Public License v3.0 only | GNU General Public License v3.0 only |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
pulledpork
-
Getting a lot of BF attempts on my server, any tips/ways to cut this out?
Snort on the other hand is a real full-featured IPS and much more powerful. Using them together can offload the processing work Snort needs to do though. You can use something like pulledpork to automatically update various rulesets for Snort as well (community, Talos (Cisco), etc.). Snort is also a big part of Cisco's FirePower firewalls.
-
Rules update during system installation
In the Github issues section, there's a 3 year old, still Open "Process Snort 3 Rules (https://github.com/shirkdog/pulledpork/issues/297)" issue. So that would get me questioning how they got it working in the guide at all...
psad
- Best ways to secure wireguard tunnel
-
Building my home intrusion detection system (Suricata & ELK on a Pi4)
Ok cool, thanks! I orginially came across Snort because HoneyPi (Raspberry Pi Honeypot) uses psad for monitoring port scanning activities which in turn uses snort signatures among others.
-
Newbie needs advice! RasPi with 4GB or 8GB for my homelab plans?
PSAD
-
PSAD is worth?
Well nftablessupport might be needed in the future (https://github.com/mrash/psad/issues/10) but I think it will still work with iptables.
What are some alternatives?
tpotce - 🍯 T-Pot - The All In One Honeypot Platform 🐝 [Moved to: https://github.com/telekom-security/tpotce]
Pi.Alert - WIFI / LAN intruder detector. Check the devices connected and alert you with unknown devices. It also warns of the disconnection of "always connected" devices
Munin - Main repository for munin master / node / plugins
dnscrypt-proxy - dnscrypt-proxy 2 - A flexible DNS proxy, with support for encrypted DNS protocols.
Rsnapshot - a tool for backing up your data using rsync (if you want to get help, use https://lists.sourceforge.net/lists/listinfo/rsnapshot-discuss)
fwsnort - Application Layer IDS/IPS with iptables
snort-rules - An UNOFFICIAL Git Repository of Snort Rules(IDS rules) Releases. [UnavailableForLegalReasons - Repository access blocked]
Pi-hole - A black hole for Internet advertisements
dohot - DoHoT: making practical use of DNS over HTTPS over Tor
AnonAddy - Anonymous email forwarding
bitwarden_rs - Unofficial Bitwarden compatible server written in Rust, formerly known as bitwarden_rs [Moved to: https://github.com/dani-garcia/vaultwarden]
Nextcloud - ☁️ Nextcloud server, a safe home for all your data