Falco Rules Logo

Falco Rules

0
Free
Visit Website

This repository contains officially managed Falco Rules by The Falco Project, pre-defined detections for security threats, abnormal behaviors, and compliance-related monitoring. Users can modify community-contributed rules or create custom ones, focusing on syscalls and container events. Stay updated with the Rules Overview Document and release notes for evolving threats and systems.

FEATURES

ALTERNATIVES

A simple IOC scanner bash script for Linux/Unix/OSX systems

Fast passive subdomain enumeration tool

Scan the internet for publicly exposed network components

A tool to discover new target domains using Content Security Policy

An information gathering tool for DNS, subdomains, ports, and directories enumeration.

A fast and multi-purpose HTTP toolkit for sending HTTP requests and parsing responses

A TCP-based traceroute implementation that bypasses firewall filters to trace the path to a destination.

Linux packet crafting tool for testing IDS/IPS and creating attack signatures.