.:[ packet storm ]:.
                         
the mental epicenter
the mental epicenter

 Section:  .. / UNIX / IDS  /

Also see UNIX Network Logging Utilities.

Page 1 of 23
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 >> Files 1 - 25 of 560
Currently sorted by: File SizeSort By: File Name, Last Modified

 ///  File Name: unix.zip
Description:
 unix.zip
File Size:45314377
Last Modified:Aug 16 20:03:14 1999
MD5 Checksum:602820f7be369655bb30e58b50337e63

 ///  File Name: honeyclient-1.0.2.tar.gz
Description:
 A 'honeypot' is designed to detect server-side attacks. In contrast, a 'honeyclient' is designed to detect client-side attacks. Specifically, a honeyclient is a dedicated host that drives specially instrumented applications to access remote servers to see if those servers are behaving in a malicious manner (by compromising the client). Honeyclients can proactively detect exploits against client applications without known signatures. This framework uses a client-server model with SOAP messaging as the primary communication method, and uses the free version of VMware Server as a means of virtualizing the client environment.
Author:MITRE Honeyclient Project
Homepage:http://www.honeyclient.org/trac
File Size:22264167
Last Modified:Mar 12 17:52:30 2008
MD5 Checksum:4bda6d726ea764bca41ebe69e5df0b14

 ///  File Name: step.tar.gz
Description:
 SHADOW: comprehensive network monitoring/analysis/intrusion detection software. 4.2MB. For UNIX.
Author:SANS' Cooperative Intrusion Detection Evaluation and Response (CIDER) Project
File Size:4200183
Last Modified:Aug 16 20:02:25 1999
MD5 Checksum:f968139cab6f6fbdb767e6a52aeabef0

 ///  File Name: SHADOW.tar.gz
Description:
 Traffic analysis and Intrusion Detection System developed by The SANS Institute, The Naval Surface Warfare Center, the Lawrence Berkeley Research Center, and the US Dept of Energy. This package includes tcpdump, tcpslice, libpcap, and the SHADOW code. Check out the Instruction file before you download it. Requires SSH and Apache web server
File Size:3854366
Last Modified:Aug 16 20:02:20 1999
MD5 Checksum:9048a80d7f705efa73a4ba5aa7488fb5

 ///  File Name: WinFail2Ban_0.2.zip
Description:
 WinFail2Ban is an open source intrusion protection system that scans log files, looks for SQL failed logins, and analyzes the event viewer banning IPs as needed. This is a port of Fail2Ban from Linux to Windows.
Author:Vittorio Pavesi
Homepage:http://winfail2ban.sourceforge.net/
File Size:3776718
Last Modified:Jan 16 17:26:20 2009
MD5 Checksum:7607136d952cb6329cf12683b0a1b7c2

 ///  File Name: tripwire-2.3-47.bin.tar.gz
Description:
 Tripwire is a very popular file integrity checker which saves checksums of selected files in a database. Any changes to these files are flagged and logged, including those that were added or deleted, with optional email / pager reporting. Databases and reports are cryptographically signed.
Homepage:http://www.tripwire.org
File Size:3224386
Last Modified:Oct 30 18:30:41 2000
MD5 Checksum:d3d1d35ee10b59a0176ca6f754825ca1

 ///  File Name: samhain-2.5.10.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:This release fixes a race condition that would cause problems with stale file handles under certain conditions.
File Size:1991041
Last Modified:Oct 12 04:42:29 2009
MD5 Checksum:987a29fc83fc76b67511487425054cf1

 ///  File Name: samhain-2.5.5.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
File Size:1971622
Last Modified:Apr 30 18:19:13 2009
MD5 Checksum:7376fec2397f37fc1dabcbd77aed56ab

 ///  File Name: samhain-2.7.1.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Logging of client reports to prelude can be done by the server now (rather than by the clients themselves). The configuration file parser now accepts C-style quoting for filenames, and the maximum line length has been increased to 16382 characters. Some compile problems have been fixed.
File Size:1936148
Last Modified:Jun 7 17:11:41 2010
MD5 Checksum:3e5eca3315332b494b2b68645bb342d4

 ///  File Name: samhain-2.6.4.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:The log monitoring module has been enhanced to allow monitoring the output of shell commands. Some bugs in the log monitoring and kernel checking modules have been fixed.
File Size:1914063
Last Modified:Mar 22 16:04:16 2010
MD5 Checksum:e82003912ec06a435b432f0c60f9d2ea

 ///  File Name: samhain-2.6.3.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:This release fixes a regression in the email module which caused messages of the highest priority to be queued along with lower priority messages, instead of being mailed immediately.
File Size:1908972
Last Modified:Mar 10 15:06:36 2010
MD5 Checksum:d0b25c09bad153304f4aadba4b449c0e

 ///  File Name: samhain-2.6.1b.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:On Linux, login/logout tracking now uses inotify. Log file monitoring has been enhanced to support checking for missing heartbeat messages, reporting bursts of repeated messages, and checking for correlated events. UID/GID caching has been improved to reduce the number of lookups, and a compile problem on Cygwin has been fixed.
File Size:1904857
Last Modified:Dec 23 09:41:34 2009
MD5 Checksum:226f775243535456bf852b406ffc4fe1

 ///  File Name: samhain-2.6.0.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Pathname expansion is now performed at each file check, rather than only at startup. The SUID check runs in a separate thread now. Some minor bugs have been fixed.
File Size:1879999
Last Modified:Oct 31 19:21:15 2009
MD5 Checksum:853067c79bedc70b870ad03e91993f72

 ///  File Name: samhain-2.5.4.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
File Size:1872356
Last Modified:Mar 5 17:19:36 2009
MD5 Checksum:bbbaf653bbaef5ee71fadb04c71872e0

 ///  File Name: kojoney-0.0.3.1.tar.gz
Description:
 Kojoney is an easy of use, secure, robust, and powerful Honeypot for the SSH service. It includes other tools such as kip2country (IP to Country) and kojreport, a tool to generate reports from the log files.
Author:Joxean Koret
Homepage:http://kojoney.sourceforge.net/
Changes:Various corrections.
File Size:1861096
Last Modified:Aug 12 03:21:33 2005
MD5 Checksum:e97e693600a4a231d675ce495d59ab25

 ///  File Name: samhain-2.5.2b.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
File Size:1849440
Last Modified:Jan 29 13:55:35 2009
MD5 Checksum:d8d6abf44e3d5b38cd956079658f1088

 ///  File Name: samhain-2.5.7.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:A potential deadlock has been fixed along with a configuration reload bug in the \'userfiles\' module. C99-style comments have been removed to improve portability, and the format of the date header of emails has been corrected.
File Size:1839616
Last Modified:Jul 23 12:36:58 2009
MD5 Checksum:0601ac54729e94fc5f989ab7d33bd1d4

 ///  File Name: samhain-2.5.0.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
File Size:1828218
Last Modified:Nov 1 14:38:02 2008
MD5 Checksum:c07e8d93d05c66b36e9ee407bbd34a4f

 ///  File Name: samhain-2.4.6.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1791222
Last Modified:Sep 3 16:58:20 2008
MD5 Checksum:b707b7b7207b4bfa6357fe70795ef57d

 ///  File Name: samhain-2.4.5a.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1790423
Last Modified:Aug 18 18:54:44 2008
MD5 Checksum:b78bd04ff0661e94a1387fe0e84586b9

 ///  File Name: tripwire-2.3.0-50.tar.gz
Description:
 Tripwire is a very popular system integrity checker, a utility that compares properties of designated files and directories against information stored in a previously generated database. Any changes to these files are flagged and logged, including those that were added or deleted, with optional email and pager reporting. Support files (databases, reports, etc.) are cryptographically signed.
Homepage:http://www.tripwire.org
Changes:Security fixes with respect to temp file handling, as well a new global email option.
File Size:1766895
Last Modified:Feb 4 18:44:45 2001
MD5 Checksum:f244f48a3bf052acdc9c2341210285eb

 ///  File Name: samhain-2.4.3.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1760941
Last Modified:Feb 5 20:03:18 2008
MD5 Checksum:96b16066ea69f95687444b5dcb41f2d7

 ///  File Name: samhain-2.4.1.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1757118
Last Modified:Nov 27 23:14:51 2007
MD5 Checksum:21caeeb781f17d94df2cfc23e2404435

 ///  File Name: samhain-2.4.0.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1756687
Last Modified:Nov 2 11:56:52 2007
MD5 Checksum:930d1382a741604c0aa943280cc9484e

 ///  File Name: samhain-2.3.6.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1743505
Last Modified:Sep 7 20:09:15 2007
MD5 Checksum:f120378aa3083ef1e7b6c621af09bbf1
 

 ///  Last 10 Files
  1. :· OIG_10-111_Aug10.pdf
  2. :· USN-978-1.txt
  3. :· USN-975-1.txt
  4. :· USN-985-1.txt
  5. :· ESA-2010-016.txt
  6. :· ESA-2010-015.txt
  7. :· ESA-2010-014.txt
  8. :· dsa-2106-1.txt
  9. :· fbsdpseudofs-nullpointer.txt
  10. :· cisco-sa-20100908-wlc.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· USN-978-1.txt
  2. :· USN-975-1.txt
  3. :· USN-985-1.txt
  4. :· ESA-2010-016.txt
  5. :· ESA-2010-015.txt
  6. :· ESA-2010-014.txt
  7. :· dsa-2106-1.txt
  8. :· fbsdpseudofs-nullpointer.txt
  9. :· cisco-sa-20100908-wlc.txt
  10. :· HPSBMA02574-SSRT100038.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· moaub-msoffice.txt
  2. :· moaub-sirang.txt
  3. :· adobe_cooltype_sing.rb.txt
  4. :· java_rmi_connection_impl.rb.txt
  5. :· fbsdpmap-racecondition.txt
  6. :· ZSL-2010-4963.txt
  7. :· zenphoto-sqlxss.txt
  8. :· openjournalsystem-xss.txt
  9. :· fcms-sql.txt
  10. :· enanocms-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· DnsSpoofer.zip
  2. :· netrecon-1.78.tgz
  3. :· iexploder-1.7.tgz
  4. :· openca-tools-1.3.0.tar.gz
  5. :· malware_check_tool-1.2.zip
  6. :· hyenae-0.35-2.tar.gz
  7. :· joomlascan.tgz
  8. :· openscap-0.6.2.tar.gz
  9. :· suricata-1.0.2.tar.gz
  10. :· cvechecker-0.5.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· OIG_10-111_Aug10.pdf
  2. :· ieee-1394-forensics.pdf
  3. :· itsecteam_shell.zip
  4. :· encfs-1.7.2.tgz
  5. :· pbania-jit-mitigations2010.pdf
  6. :· pam_shield-0.9.4.tar.gz
  7. :· armbinsh-shellcode.txt
  8. :· path-attacks.txt
  9. :· checksum-shellcode.txt
  10. :· nullconGoa2011-CFP.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice