SSHGuard protects hosts from brute-force attacks by monitoring system logs, detecting attacks, and blocking attackers using a firewall. It works by monitoring system log files and journal logs from various sources like cockpit, Common Log Format, macOS log, metalog, multilog, raw log files, syslog, syslog-ng, and systemd journal. SSHGuard's parser is fast, sandboxed, and secure, as it compiles attack signatures into a full lexical analyzer that does not slow down with more signatures, runs as a separate unprivileged process, and is not susceptible to regular expression denial of service attacks.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
Tcpreplay is a suite of Open Source utilities for editing and replaying captured network traffic.
A Linux command-line tool that allows you to kill in-progress TCP connections based on a filter expression, useful for libnids-based applications that require a full TCP 3-way handshake for TCB creation.
A free, open-source network protocol analyzer for capturing and displaying packet-level data.
Snort is an open source intrusion prevention system that uses rules to detect and prevent malicious network activity.
WiGLE.net is a platform that collects and provides data on WiFi networks and cell towers, with over 1.3 billion networks collected.
A Bluetooth 5 and 4.x sniffer using TI CC1352/CC26x2 hardware with advanced features and Python-based host-side software.
Suricata offers real-time intrusion detection, intrusion prevention, and network monitoring.
Tor Browser is a free and open-source software that allows users to browse the internet anonymously and privately.
A suite for man in the middle attacks, featuring sniffing of live connections, content filtering, and protocol dissection.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.