Zeek Agent
An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek.
MASTIFF is a static analysis framework that automates the process of extracting key characteristics from various file formats. It uses a community-driven set of plug-ins to perform file analysis and data extraction, supporting a broad range of analytic needs. The framework allows analysts to focus on analysis rather than figuring out how to parse files. Originally designed for malware, intrusion, and forensic analysis, MASTIFF is well-suited to support a broader range of analytic needs.
An endpoint monitoring tool for Linux and macOS that reports file, socket, and process events to Zeek.
An alternative to the auditd daemon with goals of safety, speed, JSON output, and pluggable pipelines connecting to the Linux kernel via netlink.
ClamAV is an open-source antivirus engine that detects trojans, viruses, malware, and other malicious threats.
Comprehensive cybersecurity platform for hybrid and multi-cloud environments
OSSEC is a versatile HIDS known for its powerful log analysis and intrusion detection capabilities.
Emsisoft Enterprise Security + EDR provides robust and proven endpoint security for organizations of all sizes with layered protection and a cloud-based management console.