Falco Rules Logo

Falco Rules

0
Free
Network Security
Appsec
Auditing
Compliance
Container Security
Syscalls
Visit Website

This repository contains officially managed Falco Rules by The Falco Project, pre-defined detections for security threats, abnormal behaviors, and compliance-related monitoring. Users can modify community-contributed rules or create custom ones, focusing on syscalls and container events. Stay updated with the Rules Overview Document and release notes for evolving threats and systems.

FEATURES

ALTERNATIVES

Libnet Logo
Libnet

An API for constructing and injecting network packets with additional functionality.

Free
Network Security
tcpdump Logo
tcpdump

Tcpdump is a command-line packet analyzer for capturing and analyzing network traffic.

Free
Network Security
Xplot Logo
Xplot

A tool for analyzing TCP packet traces with color support.

Free
Network Security
MITMEngine Logo
MITMEngine

Accurate detection of HTTPS interception and robust TLS fingerprinting tool.

Free
Network Security
Netis Cloud Probe Logo
Netis Cloud Probe

Netis Cloud Probe is an open source project for capturing and analyzing network packets across different machines.

Free
Network Security
httpscreenshot Logo
httpscreenshot

A simple tool to take screenshots of HTTPS websites

Free
Network Security
Justniffer Logo
Justniffer

A network protocol analyzer for capturing and analyzing network traffic with a focus on TCP/IP flow reconstruction and response time tracking.

Free
Network Security
Netcap Logo
Netcap

Netcap efficiently converts network packets into structured audit records for machine learning algorithms, using Protocol Buffers for encoding.

Free
Network Security

PINNED

Mandos Brief Newsletter Logo

Mandos Brief Newsletter

A weekly newsletter providing cybersecurity leadership insights, industry updates, and strategic guidance for security professionals advancing to management positions.

Resources
PTJunior Logo

PTJunior

An AI-powered penetration testing platform that autonomously discovers, exploits, and documents vulnerabilities while generating NIST-compliant reports.

Offensive Security
CTIChef.com Detection Feeds Logo

CTIChef.com Detection Feeds

A tiered cyber threat intelligence service providing detection rules from public repositories with varying levels of analysis, processing, and guidance for security teams.

Threat Management
ImmuniWeb® Discovery Logo

ImmuniWeb® Discovery

ImmuniWeb Discovery is an attack surface management platform that continuously monitors an organization's external digital assets for security vulnerabilities, misconfigurations, and threats across domains, applications, cloud resources, and the dark web.

Attack Surface Management
Checkmarx SCA Logo

Checkmarx SCA

A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Application Security
Orca Security Logo

Orca Security

A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

Cloud Security
DryRun Logo

DryRun

A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.

Application Security