Bug#1057475: RFP: slips -- Behavioral Machine Learning-Based Intrusion Prevention System

[Alya Gomaa <alyaggomaa@gmail.com>]

Package: wnpp
Severity: wishlist

* Package name    : slips
  Version         : 1.0.8
  Upstream Author : Alya Gomaa, Sebastian Garcia
* URL               : https://github.com/stratosphereips/StratosphereLinuxIPS
* License         : GNU General Public License
  Programming Lang: Python
  Description     :  Slips is a powerful endpoint behavioral intrusion prevention and detection system that uses machine learning to detect malicious behaviors in network traffic. Slip can work with network traffic in real-time, PCAP files, and network flows from popular tools like Suricata, Zeek/Bro, and Argus. Slips threat detection is based on a combination of machine learning models trained to detect malicious behaviors, 40+ threat intelligence feeds, and expert heuristics. Slips gathers evidence of malicious behavior and uses extensively trained thresholds to trigger alerts when enough evidence is accumulated.

It would be nice to have Slips package in Debian to help protect more users from malicious actors.