LFX Platform

Know more about LFX Platform

LFX Insights

Intrusion Detection/Prevention Systems

Software for detecting and preventing unauthorized access or attacks on networks.

15 projects

26,949 contributors

$2.3B

Cilium

Cilium is an open source software for providing, securing and observing network connectivity between container workloads - cloud native, and fueled by the revolutionary Kernel technology eBPF.

Contributors

7,573

Organizations

2,125

Software value

$1.1B

OPNsense Core

OPNsense is an open source firewall and routing platform based on FreeBSD that includes features like intrusion detection, load balancing, VPN capabilities, and traffic shaping. It provides a user-friendly web interface for network security and management while offering enterprise-grade features for both home and business users.

Contributors

4,252

Organizations

596

Software value

$9.6M

Fail2Ban

Daemon to ban hosts that cause multiple authentication errors

Contributors

3,101

Organizations

558

Software value

$889K

OPNsense

OPNsense is an open source firewall and routing platform based on FreeBSD that includes features like intrusion detection, load balancing, VPN capabilities, and traffic shaping. It provides a user-friendly web interface for network security management and serves as a comprehensive network security solution for businesses and organizations.

Contributors

2,902

Organizations

292

Software value

$1B

Security Onion

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections, and case management. It also includes other tools such as osquery, CyberChef, Elasticsearch, Logstash, Kibana, Suricata, and Zeek.

Contributors

2,392

Organizations

62

Software value

$13M

ModSecurity

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis.

Contributors

1,990

Organizations

321

Software value

$3.1M

FreeRADIUS

FreeRADIUS is an open source RADIUS server implementation that provides authentication, authorization and accounting (AAA) services for networks. It is widely used for managing network access control, supporting various authentication methods and protocols like EAP, PEAP, and TTLS.

Contributors

1,241

Organizations

233

Software value

$24M

Zeek

Zeek is an open-source network security monitoring tool that provides real-time analysis of network traffic for detecting suspicious activities. It functions as a passive network traffic analyzer that inspects all traffic on a link in depth for signs of suspicious activity, offering powerful scripting capabilities for network analysis and intrusion detection.

Contributors

867

Organizations

114

Software value

$35M

NetAlertX

Network intruder and presence detector. Scans for devices connected to your network and alerts you if new and unknown devices are found.

Contributors

856

Organizations

63

Software value

$12M

Suricata

Suricata is an open source network threat detection engine providing real-time intrusion detection (IDS), intrusion prevention (IPS), network security monitoring (NSM) and offline pcap processing. It inspects network traffic using powerful and extensive rules and signature language, and offers support for Lua scripting for detection of complex threats.

Contributors

776

Organizations

113

Software value

$17M

Snort++

Snort++

Contributors

478

Organizations

47

Software value

$16M

Maltrail

Maltrail is a malicious traffic detection system that utilizes publicly available lists of malicious and/or suspicious trails, along with static trails compiled from various AV reports and custom user-defined lists. It monitors network traffic and identifies threats based on these trails, providing real-time alerts for potential security incidents.

Contributors

389

Organizations

50

Software value

$56M

Slips

Slips, a free software behavioral Python intrusion prevention system (IDS/IPS) that uses machine learning to detect malicious behaviors in the network traffic. Stratosphere Laboratory, AIC, FEL, CVUT in Prague.

Contributors

132

Organizations

20

Software value

$2.7M

Malcolm

Malcolm is a powerful, easily deployable network traffic analysis tool suite for full packet capture artifacts (PCAP files), Zeek logs and Suricata alerts.

This project hasn't been onboarded to LFX Insights.

osquery

SQL powered operating system instrumentation, monitoring, and analytics.

This project hasn't been onboarded to LFX Insights.
Looking for a project that’s not listed?