Gonzo Project Research Repository
-
Updated
Jul 7, 2017 - C#
Gonzo Project Research Repository
Simple IPS to automatically block hosts performing automated attacks in the local firewall.
Installs Fail2Ban. Configures jails and ban durations. Part of the Olyn framework for Chef.
Suricata Intrusions Detection (IDS) rules
Minimal manifest and installations of Talos LightSPD distributions for Snort 3.
A simple intrusion detection/prevention system framework written in PHP.
React to text in log files or journal
IntrusiGuard is a powerful Python-based tool designed for real-time network intrusion detection and prevention on Windows operating systems. Leveraging the capabilities of the Scapy library, this tool monitors network traffic, identifies potential intrusions, and takes preventive actions to enhance the security of your network.
Fail2ban for Windows with support for RDP, MSSQL, OpenSSH, and tcpoverudp2 events. It blocks IP addresses where repeated failed access events originate from.
Snort3 on Alpine Linux
Detects online privacy intrusions, works 60% of the time...
DHCP-DNS Sever Firewall Rules
Module on intrusion detection and prevention systems
Find all the ip adresses that have repeat offenses according to the NGINX access logs.
hobby project. some kind of honeypot idk, open some ports, log and ban ip addresses
This article clarifies distinctions betweeen IDSes and IPSes, offering insights into their functionalities, use cases, and how they complement each other in a comprehensive security posture.
A workbench to simulate, research, and develop ML-powered Intrusion Detection Systems to prevent next-gen network attacks.
Network and Security Administration: Create and maintain security on various servers hosted on a Linux/UNIX environment.
This is the C++ version of the StratosphereLinuxIPS. It is mainly used for integration with Snort and other IDSs.
Docker Image for remote dynamic IP blacklisting on UniFi USG.
Add a description, image, and links to the intrusion-prevention topic page so that developers can more easily learn about it.
To associate your repository with the intrusion-prevention topic, visit your repo's landing page and select "manage topics."