- Notifications
You must be signed in to change notification settings - Fork9
Yara powered NIDS with high speed packet capture powered by PF_RING
License
NotificationsYou must be signed in to change notification settings
mole-ids/mole
Folders and files
Name | Name | Last commit message | Last commit date | |
---|---|---|---|---|
Repository files navigation
Mole is an experimental Network Intrusion Detection System that uses Yara as matching engine and PF_RING for high speed packet capture.
.Features .Supported OSes .Quickstart .Documentation .Contributing .
- Yara engine for packet matching
- PF_RING integration
- Rule configuration using meta fields from Yara (variables, ranges, ...)
Planned Windows 10 and MacOS X.
To get your hands on Mole, you can use the5-Minute Quickstart in our documentation.
You can find the complete documentation of Mole athttps://docs.mole-ids.org.
Please note that this project is released with aContributor Code of Conduct.By participating in this project, you agree to abide by its terms.
About
Yara powered NIDS with high speed packet capture powered by PF_RING
Topics
Resources
License
Code of conduct
Stars
Watchers
Forks
Packages0
No packages published