p-r-a-v-i-n

p-r-a-v-i-n/rwatch

Real-time Threat Detection using eBPF + Rust

0 stars 1 forks 0 watchers Rust Apache License 2.0
ebpf kern kernel linux rust secu security-tools thread threat-detection
View on GitHub
3 Open Issues Need Help Last updated: Aug 1, 2025

Open Issues Need Help

View All on GitHub
CLI Output: Add Color & Severity Levels 2 months ago
good first issue ui
p-r-a-v-i-n/rwatch
0

Real-time Threat Detection using eBPF + Rust

Rust
#ebpf#kern#kernel#linux#rust#secu#security-tools#thread#threat-detection
Add Unit Tests for Userspace Rule Engine 3 months ago

AI Summary: Implement unit tests for the userspace rule engine in the rwatch project, covering YAML rule parsing, validation, and event matching scenarios. Tests should include both valid and invalid rule files and various event matching conditions.

Complexity: 3/5
good first issue testing
p-r-a-v-i-n/rwatch
0

Real-time Threat Detection using eBPF + Rust

Rust
#ebpf#kern#kernel#linux#rust#secu#security-tools#thread#threat-detection
Implement Rule Engine (YAML/JSON) 3 months ago

AI Summary: Implement a rule engine for the rwatch threat detection tool that processes captured execve events and matches them against rules defined in a YAML or JSON configuration file. The engine should trigger alerts when a rule is matched.

Complexity: 4/5
enhancement good first issue
p-r-a-v-i-n/rwatch
0

Real-time Threat Detection using eBPF + Rust

Rust
#ebpf#kern#kernel#linux#rust#secu#security-tools#thread#threat-detection