Features

YAIDS is a Multi-Threaded Intrusion Detection System using Yara.

• Multi-Threaded
• Network/Stream IDS
• Performant (written in C)
• Yara Pattern Matching Engine
• Supports any PCAP compatible data stream (Network, USB, Bluetooth, etc.)
• Supports BPF (traffic filtering)
• Supports all valid Yara rules (including modules)
• Includes External Variables to build traffic/packet attribute conditions
• Multiple logging modes (alerts, PCAP data, console, file, etc.)