Eight network security Open source framework

Network security is a major event that can not be overlooked, here to recommend eight simple and practical eight network security framework, you will be able to maximize the help you to ensure that the network security is not violated threats.

Open source projects that can help build and operate security systems are numerous, especially as the security monitoring of tools and the need for incident response continue to increase, open source security software has to improve its performance.

Here are 10 open source security software.

1. Bro

Bro is a powerful framework for network analysis and security monitoring, which differs from the common IDs. Compared with the common network transmission Analysis tool, it focuses on network security monitoring and provides a complete platform tool.

2. Moloch

Moloch is an open source, large IPv4 pcap for indexing and collecting database systems. Moloch is not intended to replace the IDs engine, but rather they work together to store and index all network traffic in a standard PCAP format, providing fast access.

3. Ossec

Ossec is a complete platform for monitoring and controlling user systems. It mixes hids, log monitoring and Sim/siem in a simple, powerful, open source way.

4. MIDAS

Midas is a framework for developing MAC intrusion detection systems, based primarily on work and collaborative discussions between Etsy and the Facebook security team. The repository provides a modular framework and some assistance tools, as well as a case module to detect persistent mechanisms for modifying common OS X.

5. Osxauditor

Osxauditor is a free mac OS x computer Forensics tool that shows analysis of kernel extensions, user-downloaded files, and so on, then extracts user's quarantine files, access history, and so on, and finally confirms the trustworthiness of the file.

6. Cuckoo

Cuckoo is the leader in an Open-source, dynamic malware analysis system that discovers and collects malicious programs in the system and then crushes them.

7. brakeman

Brakeman is a static profiling tool that detects security vulnerabilities in Ruby on Rails applications.

8. Mozdef (The Mozilla Defense Platform)

Mozdef's design is inspired by the large number of tools used by cyber attackers, such as Metasploit, Armitage, Lair, Dradis, and other programs that are designed to help attackers coordinate, share intelligence and adjust attacks in real time. But defenders are often restricted to accessing wikis, ticketing systems, and manual operations to track databases attached to security information Event Management (SIEM) systems. Mozdef (The Mozilla Defense Platform) is looking for an automatic handling of security event handlers and calls the event handlers in real time.

Original link: http://code.csdn.net/news/2819796