https://github.com/amrabed/rhids

Host-based Intrusion Detection System for Linux Containers
https://github.com/amrabed/rhids

docker gradle java shell

Last synced: about 1 year ago
JSON representation

Host-based Intrusion Detection System for Linux Containers

• Host: GitHub
• URL: https://github.com/amrabed/rhids
• Owner: amrabed
• License: mit
• Created: 2015-03-19T23:23:21.000Z (over 11 years ago)
• Default Branch: master
• Last Pushed: 2023-04-27T23:03:34.000Z (about 3 years ago)
• Last Synced: 2025-03-30T17:04:18.477Z (about 1 year ago)
• Topics: docker, gradle, java, shell
• Language: Java
• Homepage:
• Size: 4.41 MB
• Stars: 7
• Watchers: 2
• Forks: 2
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
[![Build Status](https://travis-ci.org/amrabed/rhids.svg)](https://travis-ci.org/amrabed/rhids)

[![Code Quality](https://sonarcloud.io/api/project_badges/measure?project=rhids&metric=alert_status)](https://sonarcloud.io/dashboard?id=rhids)

[![Known Vulnerabilities](https://snyk.io/test/github/amrabed/rhids/badge.svg?targetFile=build.gradle)](https://snyk.io/test/github/amrabed/rhids?targetFile=build.gradle)

[![GitHub issues](https://img.shields.io/github/issues/amrabed/rhids.svg)](https://github.com/amrabed/rhids/issues)

[![GitHub (pre-)release](https://img.shields.io/github/release/amrabed/rhids/all.svg)](https://github.com/amrabed/rhids/releases)

[![License](https://img.shields.io/badge/license-MIT-blue.svg)](LICENSE)

# RHIDS

Host-based Intrusion Detection System for Linux Containers*

To use `rhids`, please make sure you have [`strace-docker`](https://github.com/amrabed/strace-docker) installed. `rhids` depends on [`strace-docker`](https://github.com/amrabed/strace-docker) for collecting system calls from running containers.

## Usage

### Basic install

    git clone https://github.com/amrabed/rhids && sudo ./rhids/install

    sudo su 

    rhids -h

[![How to use the RHIDS tool](https://img.youtube.com/vi/R5BHjYZ22Tw/0.jpg)](https://www.youtube.com/watch?v=R5BHjYZ22Tw)

### Using Docker

    docker run -it --rm --name rhids -v /var/log/strace-docker:/var/log/strace-docker amrabed/rhids

    

    

* Implemented as part of my Ph.D. dissertation research. See [this paper](https://arxiv.org/abs/1611.03056) for more details