.:[ packet storm ]:.
                           
validate everything - trust no vendor
validate everything - trust no vendor

 Section:  .. / UNIX / IDS  /

Also see UNIX Network Logging Utilities.

Page 2 of 21
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 >> Files 25 - 50 of 524
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: autobuse.lsm
Description:
 More detailed description of Autobuse.
File Size:6553
Last Modified:Aug 16 20:02:38 1999
MD5 Checksum:31e60b79f4dc14895f8b82b90a45c061

 ///  File Name: autostatus-1.1.tar.gz
Description:
 autostatus is yet another network monitoring program. Easy to use and configure, fast and efficient. It exploits maximum parallelism during its checking to speed up monitoring.
Author:Dave Andersen.
File Size:24943
Last Modified:Aug 16 20:02:32 1999
MD5 Checksum:134f76a43a3f0397f856250dd9e8e900

 ///  File Name: beltane-0.3.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
File Size:161912
Last Modified:Oct 11 03:11:09 2002
MD5 Checksum:c41eb1621a0780a7e93d36fbd908e633

 ///  File Name: beltane-1.0.10.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Fixed an arcane bug in configure.ac.
File Size:177881
Last Modified:Mar 28 01:42:20 2006
MD5 Checksum:646445fa2f85414214a2c22c26591fab

 ///  File Name: beltane-1.0.11.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Multiple improvements have been made.
File Size:177935
Last Modified:May 5 06:42:42 2006
MD5 Checksum:262a8576521d4a1a22b2185b39ce287e

 ///  File Name: beltane-1.0.13.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Bug fixes.
File Size:178761
Last Modified:Jun 7 02:39:53 2007
MD5 Checksum:44bbc7af1ffb0417b6dc2d6d5d07ee9f

 ///  File Name: beltane-1.0.4.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Various bug fixes.
File Size:171577
Last Modified:Jan 26 10:00:00 2004
MD5 Checksum:a24f53de16dea0be69e012df1b2cb1b6

 ///  File Name: beltane-1.0.5.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Two bug fixes.
File Size:173059
Last Modified:Mar 24 00:35:00 2004
MD5 Checksum:d84122404fa52ba9034595d0f30da600

 ///  File Name: beltane-1.0.6.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Bug fix.
File Size:173203
Last Modified:Jul 20 20:35:00 2004
MD5 Checksum:c554bd66b8960516bec6b5e0d40c32ed

 ///  File Name: beltane-1.0.7.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Fixed processing of suidcheck/kernel updates.
File Size:173301
Last Modified:Nov 1 20:53:36 2004
MD5 Checksum:e173b4738b07dd9c305b9cd3fd6e6309

 ///  File Name: beltane-1.0.8.tar.gz
Description:
 Beltane is a web-based central management console for the Samhain file integrity / intrusion detection system. It enables the administrator to browse client messages, acknowledge them, and update centrally stored file signature databases. Beltane requires a Samhain (version 1.6.0 or higher) client/server installation, with file signature databases stored on the central server, and logging to a SQL database enabled.
Homepage:http://la-samhna.de/beltane
Changes:Various bug fixes.
File Size:177787
Last Modified:Jul 21 02:32:25 2005
MD5 Checksum:c2abeccb565bb080291029e2489094a0

 ///  File Name: bgcheck-0.4.tar.gz
Description:
 bgcheck 0.4 - bgcheck is a process monitor for Linux written in perl that can be used by administrators to limit the number of background processes that each user can run.
Author:blue.
Changes:Fixed major problems handling ftp processes and added exception list for programs.
File Size:5635
Last Modified:Aug 16 20:02:46 1999
MD5 Checksum:914c853198372275c51a07f8ba80f883

 ///  File Name: bgcheck-0.5.tar.gz
Description:
 bgcheck 0.5 - bgcheck is a process monitor for Linux written in perl that can be used by administrators to limit the number of background processes that each user can run.
Author:blue.
Changes:added support for long usernames, fixed ftpd spawn detection to work with proftpd, possibly others.
File Size:6206
Last Modified:Aug 16 20:02:47 1999
MD5 Checksum:a9f62bd27c830d84b9d7d2c4665f6f2a

 ///  File Name: bh-0.8.6.tgz
Description:
 Beholder is a wireless intrusion detection tool that looks for anomalies in a wifi environment.
Author:Nelson Murilo
Homepage:http://www.beholderwireless.org/
File Size:37682
Last Modified:Aug 20 03:19:46 2008
MD5 Checksum:65eaed3776355063d4cd9131f1515a07

 ///  File Name: bogon.c
Description:
 Remote promiscuous ethernet detector.
Author:Richard W.M. Jones.
File Size:5968
Last Modified:Aug 16 20:02:39 1999
MD5 Checksum:3187a25e1c0e0ef31a65ce3dde0f252a

 ///  File Name: bsb-monitor-1.0.tar.gz
Description:
 BSB-Monitor is a very simple network monitor. It scans the network periodically and offers the result as an HTML page and an easily parseable status file.
Author:Darko Krizic.
File Size:3494
Last Modified:Aug 16 20:02:38 1999
MD5 Checksum:4cfd294d600b541f5d89171e25dfa85f

 ///  File Name: bubblegum-1.0.tar.gz
Description:
 Bubblegum is a daemon written in C which watches a file's access, modification, and inode change times, logging the changes. It can run an external command, read files from a filelist, and more.
Homepage:http://cyclic.sourceforge.net/bubblegum
Changes:A fix for a Linux compile problem, syslogd support, and a couple of other bugfixes.
File Size:15752
Last Modified:Mar 8 01:48:57 2002
MD5 Checksum:1389a0c513dd703700de51cd7301a084

 ///  File Name: bubblegum-1.12.tar.gz
Description:
 Bubblegum is a daemon written in C which watches a file's access, modification, and inode change times, logging the changes. It can run an external command, read files from a filelist, and more.
Homepage:http://cyclic.sourceforge.net/bubblegum
Changes:Build fix for RedHat. Support for directory recursion. Port to Solaris.
File Size:111091
Last Modified:Oct 4 23:51:52 2006
MD5 Checksum:b0cea809735aa3ab85cbc3a577ef8aeb

 ///  File Name: capture-client-2.1.0-300-src.zip
Description:
 Capture is a high interaction client honeypot / honeyclient. A client honeypot/ honeyclient is a security technology that allows one to find malicious servers on a network. Capture identifies malicious servers by interacting with potentially malicious servers using a dedicated virtual machine and observing its system state changes. If a system state change is detected, since no other activity occurs on the dedicated client machine, the server Capture interacted with is classified as malicious. This is the source code for the client.
Homepage:https://projects.honeynet.org/capture-hpc
File Size:451900
Last Modified:Apr 29 20:29:01 2008
MD5 Checksum:24cb2e5a49f09244576dd9d27c798d92

 ///  File Name: capture-server-2.1.0-300-src.zip
Description:
 Capture is a high interaction client honeypot / honeyclient. A client honeypot/ honeyclient is a security technology that allows one to find malicious servers on a network. Capture identifies malicious servers by interacting with potentially malicious servers using a dedicated virtual machine and observing its system state changes. If a system state change is detected, since no other activity occurs on the dedicated client machine, the server Capture interacted with is classified as malicious. This is the source code for the server.
Homepage:https://projects.honeynet.org/capture-hpc
File Size:207257
Last Modified:Apr 29 20:29:45 2008
MD5 Checksum:34ea2bc70bcba80e269f0064e798c9e8

 ///  File Name: check-ps-1.2alpha5.tar.gz
Description:
 check-ps is a program that runs in the background, periodically executing the 'ps' program and checking its contents against the list of processes in a SysV-style /proc file system. Any processes that appear in /proc and do not appear in the information returned by 'ps' are logged and can even be killed. Any processes that appear in the output of 'ps' and not /proc are also reported (this might be done to give you the impression that syslogd is running when it is not, for example). Restriction: non-extant processes with non-fixed pids reported are not detected but easy for humans to detect.
Author:Duncan Simpson
File Size:87157
Last Modified:Aug 16 20:02:16 1999
MD5 Checksum:42d9efbf1e97e539467f74d816996b03

 ///  File Name: check-ps-1.3.1.tar.gz
Description:
 Check ps is a simple program that runs ps and compares it with its own list. It currently requires /proc but other scanning methods can be implemented. The program will run in the background or one-shot mode. Check-ps has grown rather to better resist increasingly sophisticated attacks, generate more useful reports, and implement more detection methods.
Author:Duncan Simpson
Homepage:http://checkps.alcom.co.uk
Changes:Better reporting, bug fixes, more resistant to attack.
File Size:131476
Last Modified:Oct 21 04:40:18 2000
MD5 Checksum:229ea770193b6247a854097ab1dfed00

 ///  File Name: check-ps-1.3.2.tar.gz
Description:
 Check-ps is a program that is designed to detect rootkit versions of ps that fail to tell you about selected processes. It currently requires /proc but other scanning methods can be implemented. The program will run in the background or one-shot mode. Check-ps has grown rather to better resist increasingly sophisticated attacks, generate more useful reports, and implement more detection methods. You are encouraged to check the signatures, available here.
Author:Duncan Simpson
Homepage:http://checkps.alcom.co.uk
Changes:Includes extended kill scanning which will detect LKM's such as adore-0.34. Includes new tests to generate a list of PID's by brute force.
File Size:131883
Last Modified:Apr 19 17:34:24 2001
MD5 Checksum:badf7b5b86b9afda47f8ff0f125253b1

 ///  File Name: checksums-1.0.tar.gz
Description:
 Checksums takes a file of predetermined MD5 checksums and compares with the current sum. It can be installed as a command line tool, or as a CGI which will allow you to upload the sums file remotely. In either case it is a useful tool to detect changes in your system files, such as a trojan.
Author:Mike
File Size:2865
Last Modified:Jan 10 15:15:12 2000
MD5 Checksum:0510644d9d3ff548bfd58f9c0ef75b13

 ///  File Name: checksyslog12.tar.gz
Description:
 Analyze your syslogs for security or system problems by creating a list of normal behaviour to ignore; everything else is something you should be aware of. Requires perl 5.
Homepage:http://www.jammed.com/%7Ejwa/Security/
File Size:6585
Last Modified:Dec 13 05:26:20 1999
MD5 Checksum:d4f7effb572e634a7af623ea4e6a99db
 

 ///  Last 10 Files
  1. :· MDVSA-2008-177.txt
  2. :· MDVSA-2008-176.txt
  3. :· MDVSA-2008-175.txt
  4. :· surveywizard-sql.txt
  5. :· dxshopcart-sql.txt
  6. :· faqman-sql.txt
  7. :· CORE-2008-0813.txt
  8. :· CORE-2008-0624.txt
  9. :· simasycms-sql.txt
  10. :· sipwitch-0.3.0.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-177.txt
  2. :· MDVSA-2008-176.txt
  3. :· MDVSA-2008-175.txt
  4. :· CORE-2008-0813.txt
  5. :· USN-636-1.txt
  6. :· MDVSA-2008-174.txt
  7. :· MDVSA-2008-173.txt
  8. :· SSRT080117-2.txt
  9. :· dsa-1629-2.txt
  10. :· SSRT080039-2.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· surveywizard-sql.txt
  2. :· dxshopcart-sql.txt
  3. :· faqman-sql.txt
  4. :· CORE-2008-0624.txt
  5. :· simasycms-sql.txt
  6. :· webeditioncms-sql.txt
  7. :· phpbazar-sql.txt
  8. :· folderlock-disclose.txt
  9. :· pars4u-sqlxss.txt
  10. :· bookmarks-sql.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· sipwitch-0.3.0.tar.gz
  2. :· DirBuster-0.11-src.tar.bz2
  3. :· collabreate-defcon.tgz
  4. :· Grendel-Scan-v1.0-src.zip
  5. :· voiper-0.06.tar.gz
  6. :· modscan.py.txt
  7. :· bh-0.8.6.tgz
  8. :· vsclam-0.9.1.tar.gz
  9. :· mp3nema-v0_01.tar.gz
  10. :· samhain-2.4.5a.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· toorconCFP2008.txt
  2. :· breakingstack.txt
  3. :· freebsd-sh.txt
  4. :· linux-nullfree.txt
  5. :· linux-geteuid.txt
  6. :· Reverse_Engineering_Smashing_the_Signature.pdf
  7. :· wirelesslan.pdf
  8. :· sybase-bypass.pdf
  9. :· seh-paper.txt
  10. :· linux-set.txt
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice