15 projects
Cilium
Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.
Contributors
7,573
Organizations
2,125
Software value
$1.1B
OPNsense Core
OPNsense is an open source firewall and routing platform based on FreeBSD that includes features like intrusion detection, load balancing, VPN capabilities, and traffic shaping. It provides a user-friendly web interface for network security and management while offering enterprise-grade features for both home and business users.
Contributors
4,252
Organizations
596
Software value
$9.6M
Fail2Ban
Daemon to ban hosts that cause multiple authentication errors
Contributors
3,101
Organizations
558
Software value
$889K
OPNsense
OPNsense is an open source firewall and routing platform based on FreeBSD that includes features like intrusion detection, load balancing, VPN capabilities, and traffic shaping. It provides a user-friendly web interface for network security management and serves as a comprehensive network security solution for businesses and organizations.
Contributors
2,902
Organizations
292
Software value
$1B
Security Onion
Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.
Contributors
2,392
Organizations
62
Software value
$13M
ModSecurity
ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.
Contributors
1,990
Organizations
321
Software value
$3.1M
FreeRADIUS
FreeRADIUS is an open source RADIUS server implementation that provides authentication, authorization and accounting (AAA) services for networks. It is widely used for managing network access control, supporting various authentication methods and protocols like EAP, PEAP, and TTLS.
Contributors
1,241
Organizations
233
Software value
$24M
Zeek
Zeek is an open-source network security monitoring tool that provides real-time analysis of network traffic for detecting suspicious activities. It functions as a passive network traffic analyzer that inspects all traffic on a link in depth for signs of suspicious activity, offering powerful scripting capabilities for network analysis and intrusion detection.
Contributors
867
Organizations
114
Software value
$35M
NetAlertX
Network intruder and presence detector. Scans for devices connected to your network and alerts you if new and unknown devices are found.
Contributors
856
Organizations
63
Software value
$12M
Suricata
Suricata is an open source network threat detection engine providing real-time intrusion detection (IDS), intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing. It inspects network traffic using powerful and extensive rules and signature language, and offers support for Lua scripting for detection of complex threats.
Contributors
776
Organizations
113
Software value
$17M
Snort++
Snort++
Contributors
478
Organizations
47
Software value
$16M
Maltrail
Maltrail is a malicious traffic detection system that utilizes publicly available lists of malicious and/or suspicious trails, along with static trails compiled from various AV reports and custom user-defined lists. It monitors network traffic and identifies threats based on these trails, providing real-time alerts for potential security incidents.
Contributors
389
Organizations
50
Software value
$56M
Slips
Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.
Contributors
132
Organizations
20
Software value
$2.7M
Malcolm
Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.
This project hasn't been onboarded to LFX Insights.
osquery
SQL powered operating system instrumentation, monitoring, and analytics.
This project hasn't been onboarded to LFX Insights.