├── .idea ├── .gitignore ├── .name ├── artemis_hids.iml ├── encodings.xml ├── misc.xml ├── modules.xml └── vcs.xml ├── README.md ├── app └── agent.go ├── artemis-agent.go ├── artemis-master.go ├── collect ├── common.go ├── computerinfo.go ├── crontab.go ├── init.go ├── listen.go ├── loginlog.go ├── process.go ├── user.go └── webpath.go ├── go.mod ├── go.sum ├── monitor ├── config.go ├── file.go └── utils.go ├── sh ├── artemis-lastb ├── install.sh ├── start.sh ├── stop.sh └── uninstall.sh ├── test ├── dns1.go ├── etcd.go ├── exec.go ├── fd.go ├── index.go ├── kafka_c.go ├── kafka_p.go └── pcap.go ├── tools ├── kafka-consumer.go ├── kafka-es.go └── utils │ ├── elastic6.go │ ├── elastic7.go │ ├── es.go │ └── kafka.go └── utils ├── gonlconnector ├── bpf.go ├── connector.go ├── proc.go ├── procHdr.go └── time.go ├── kafka ├── consumer.go └── producer.go ├── log └── log.go └── utils.go /.idea/.gitignore: -------------------------------------------------------------------------------- 1 | # Default ignored files 2 | /workspace.xml -------------------------------------------------------------------------------- /.idea/.name: -------------------------------------------------------------------------------- 1 | artemis_hids -------------------------------------------------------------------------------- /.idea/artemis_hids.iml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/.idea/artemis_hids.iml -------------------------------------------------------------------------------- /.idea/encodings.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/.idea/encodings.xml -------------------------------------------------------------------------------- /.idea/misc.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/.idea/misc.xml -------------------------------------------------------------------------------- /.idea/modules.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/.idea/modules.xml -------------------------------------------------------------------------------- /.idea/vcs.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/.idea/vcs.xml -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/README.md -------------------------------------------------------------------------------- /app/agent.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/app/agent.go -------------------------------------------------------------------------------- /artemis-agent.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/artemis-agent.go -------------------------------------------------------------------------------- /artemis-master.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/artemis-master.go -------------------------------------------------------------------------------- /collect/common.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/common.go -------------------------------------------------------------------------------- /collect/computerinfo.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/computerinfo.go -------------------------------------------------------------------------------- /collect/crontab.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/crontab.go -------------------------------------------------------------------------------- /collect/init.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/init.go -------------------------------------------------------------------------------- /collect/listen.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/listen.go -------------------------------------------------------------------------------- /collect/loginlog.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/loginlog.go -------------------------------------------------------------------------------- /collect/process.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/process.go -------------------------------------------------------------------------------- /collect/user.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/user.go -------------------------------------------------------------------------------- /collect/webpath.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/collect/webpath.go -------------------------------------------------------------------------------- /go.mod: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/go.mod -------------------------------------------------------------------------------- /go.sum: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/go.sum -------------------------------------------------------------------------------- /monitor/config.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/monitor/config.go -------------------------------------------------------------------------------- /monitor/file.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/monitor/file.go -------------------------------------------------------------------------------- /monitor/utils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/monitor/utils.go -------------------------------------------------------------------------------- /sh/artemis-lastb: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/sh/artemis-lastb -------------------------------------------------------------------------------- /sh/install.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/sh/install.sh -------------------------------------------------------------------------------- /sh/start.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/sh/start.sh -------------------------------------------------------------------------------- /sh/stop.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/sh/stop.sh -------------------------------------------------------------------------------- /sh/uninstall.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/sh/uninstall.sh -------------------------------------------------------------------------------- /test/dns1.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/dns1.go -------------------------------------------------------------------------------- /test/etcd.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/etcd.go -------------------------------------------------------------------------------- /test/exec.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/exec.go -------------------------------------------------------------------------------- /test/fd.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/fd.go -------------------------------------------------------------------------------- /test/index.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/index.go -------------------------------------------------------------------------------- /test/kafka_c.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/kafka_c.go -------------------------------------------------------------------------------- /test/kafka_p.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/kafka_p.go -------------------------------------------------------------------------------- /test/pcap.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/test/pcap.go -------------------------------------------------------------------------------- /tools/kafka-consumer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/tools/kafka-consumer.go -------------------------------------------------------------------------------- /tools/kafka-es.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/tools/kafka-es.go -------------------------------------------------------------------------------- /tools/utils/elastic6.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/tools/utils/elastic6.go -------------------------------------------------------------------------------- /tools/utils/elastic7.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/tools/utils/elastic7.go -------------------------------------------------------------------------------- /tools/utils/es.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/tools/utils/es.go -------------------------------------------------------------------------------- /tools/utils/kafka.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/tools/utils/kafka.go -------------------------------------------------------------------------------- /utils/gonlconnector/bpf.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/gonlconnector/bpf.go -------------------------------------------------------------------------------- /utils/gonlconnector/connector.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/gonlconnector/connector.go -------------------------------------------------------------------------------- /utils/gonlconnector/proc.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/gonlconnector/proc.go -------------------------------------------------------------------------------- /utils/gonlconnector/procHdr.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/gonlconnector/procHdr.go -------------------------------------------------------------------------------- /utils/gonlconnector/time.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/gonlconnector/time.go -------------------------------------------------------------------------------- /utils/kafka/consumer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/kafka/consumer.go -------------------------------------------------------------------------------- /utils/kafka/producer.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/kafka/producer.go -------------------------------------------------------------------------------- /utils/log/log.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/log/log.go -------------------------------------------------------------------------------- /utils/utils.go: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/njcx/Artemis_HIDS/HEAD/utils/utils.go --------------------------------------------------------------------------------