Falco Rules Logo

Falco Rules

0
Free
Visit Website

This repository contains officially managed Falco Rules by The Falco Project, pre-defined detections for security threats, abnormal behaviors, and compliance-related monitoring. Users can modify community-contributed rules or create custom ones, focusing on syscalls and container events. Stay updated with the Rules Overview Document and release notes for evolving threats and systems.

FEATURES

ALTERNATIVES

An API for constructing and injecting network packets with additional functionality.

Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.

A tool for analyzing TCP packet traces with color support.

Accurate detection of HTTPS interception and robust TLS fingerprinting tool.

Netis Cloud Probe is an open source project for capturing and analyzing network packets across different machines.

A simple tool to take screenshots of HTTPS websites

A network protocol analyzer for capturing and analyzing network traffic with a focus on TCP/IP flow reconstruction and response time tracking.

Netcap efficiently converts network packets into structured audit records for machine learning algorithms, using Protocol Buffers for encoding.

PINNED