rustinel — Open-source endpoint detection engine for Windows and Linux using ETW, eBPF, Sigma, YARA, IOCs, and ECS NDJSON alerts.
GitHub Trending·
Originalartikel lesen bei GitHub TrendingOpen-source endpoint detection engine for Windows and Linux using ETW, eBPF, Sigma, YARA, IOCs, and ECS NDJSON alerts. · Sprache: Rust · Topics: blue-team, detection-engineering, ebpf, edr, endpoint-detection, endpoint-security · ⭐ 244 Stars
Themen
blue-teamdetection-engineeringebpfedrendpoint-detectionendpoint-securityetwincident-responselinuxlinux-security