- 目录
- 1. 序章
- 2. 计算机网络与协议
- 3. 信息收集
- 4. 常见漏洞攻防
- 5. 语言与框架
- 6. 内网渗透
- 7. 云安全
- 8. 防御技术
- 9. 认证机制
- 10. 工具与资源
- 11. 手册速查
- 12. 其他
文章来源于网络收集而来,版权归原创者所有,如有侵权请及时联系!
10.13. 防御
10.13. 防御
10.13.1. 日志检查
- Sysmon
- LastActivityView
- Regshot
- teler Real-time HTTP Intrusion Detection
10.13.2. 终端监控
- attack monitor Endpoint detection & Malware analysis software
- artillery The Artillery Project is an open-source blue team tool designed to protect Linux and Windows operating systems through multiple methods.
- yurita Anomaly detection framework @ PayPal
- crowdsec An open-source, lightweight agent to detect and respond to bad behaviours
- tracee Linux Runtime Security and Forensics using eBPF
10.13.3. XSS防护
10.13.4. 配置检查
- Attack Surface Analyzer analyze operating system's security configuration for changes during software installation.
- gixy Nginx 配置检查工具
- dockerscan Docker security analysis & hacking tools
10.13.5. 安全检查
- lynis Security auditing tool for Linux, macOS, and UNIX-based systems
- linux malware detect
10.13.6. IDS
- ossec
- yulong
- AgentSmith
- ByteDance HIDS Cloud-Native Host-Based Intrusion Detection
10.13.7. RASP
- Elkeid Cloud-Native Host-Based Intrusion Detection solution project to provide next-generation Threat Detection and Behavior Audition with modern architecture
- openrasp IAST 灰盒扫描工具
10.13.8. SIEM
- panther Detect threats with log data and improve cloud security posture
10.13.9. 威胁情报
10.13.10. APT
- APT Groups and Operations
- APTnotes
- APT Hunter Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover suspicious activity
10.13.11. 入侵检查
10.13.12. 进程查看
10.13.13. Waf
10.13.14. 病毒在线查杀
10.13.15. WebShell查杀
10.13.16. 规则 / IoC
- malware ioc
- fireeye public iocs
- signature base
- yara rules
- capa rules standard collection of rules for capa
- AttackDetection Suricata PT Open Ruleset
- DailyIOC IOC from articles, tweets for archives
10.13.17. 威胁检测
- ARTIF An advanced real time threat intelligence framework to identify threats and malicious web traffic on the basis of IP reputation and historical data
10.13.18. Security Advisories
- Apache httpd Security Advisories
- Apache Solr
- Apache Tomcat
- Jetty Security Reports
- Nginx Security Advisories
- OpenSSL
10.13.19. Security Tracker
10.13.20. 匹配工具
- yara The pattern matching swiss knife
- capa The FLARE team's open-source tool to identify capabilities in executable files.
10.13.21. DoS防护
- Gatekeeper <https://github.com/AltraMayor/gatekeeper>`_ open-source DDoS protection system
10.13.22. 对手模拟 / 攻击模拟
- sliver Adversary Simulation Framework
- caldera Automated Adversary Emulation Platform
- DumpsterFire
10.13.23. 入侵防护
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论