Section: .. / UNIX / IDS /
| /// File Name: |
sxid_4.0.0.tar.gz |
Description:
|
sXid 4.0.0 - sXid is an all in one suid/sgid monitoring program designed to be run from cron on a regular basis. Basically it tracks any changes in your s[ug]id files and folders. If there are any new ones, ones that aren't set any more, or they have changed bits or other modes then it reports the changes in an easy to read format via email or on the command line.
| | Author: | Ben Collins | | Changes: | numerous - see the changelog file. | | File Size: | 43714 | | Last Modified: | Aug 16 20:02:47 1999 |
| MD5 Checksum: | f6a48e33024abc347df8606cc45fdd24 |
|
| /// File Name: |
wsm-0.9.5.tgz |
Description:
|
WSM: Web based System Monitor v0.9.5 is a Web accessible System Monitor for Linux featuring: Kernel (uname,lsmod,cpuinfo,free), Syslog (syslog, messages), Users (who), Jobs (ps -axjf), Disks (mount, df), Network (netstat -n), Routes (route -n), ISDN (imontty), VBox (vboxadm), IP Accounting (acct).
| | Author: | Dirk G.K. Mueller | | File Size: | 22167 | | Last Modified: | Aug 16 20:02:47 1999 |
| MD5 Checksum: | 451cbd6769df7dc06fbe7f5e7c7924a0 |
|
| /// File Name: |
ViperDB-0.7.tar.gz |
Description:
|
ViperDB 0.7 - ViperDB was created as a smaller and faster option to Tripwire. ViperDB does not use a fancy all-in-one database to keep records. Instead it uses a plaintext db which is stored in each "watched" directory. By using this there is no real one attack point for an attacker to focus his attention on. This coupled with the running of ViperDB every 5 minutes (via cron root job) decreases the likelihood that an attacker will be able to modify your "watched" filesystem while ViperDB is monitoring your system.
| | Author: | J-Dog | | Changes: | Now logs to a standard logging facility instead of an individual file. Added '-checkstrict' functionality which changes permissions/owner/group back to what they were before the change was made to the file. Added exception(s) to '-checkstrict' which removes all permissions from the changed file if the file originally was SUID/GUID. Changed way filesystem changes are seen by admin, now a change only sends an alert to the logs once instead of repeatedly. | | File Size: | 4234 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 1809efd2508e5987e6a8d98139bf7e07 |
|
| /// File Name: |
bgcheck-0.4.tar.gz |
Description:
|
bgcheck 0.4 - bgcheck is a process monitor for Linux written in perl that can be used by administrators to limit the number of background processes that each user can run.
| | Author: | blue | | Changes: | Fixed major problems handling ftp processes and added exception list for programs. | | File Size: | 5635 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 914c853198372275c51a07f8ba80f883 |
|
| /// File Name: |
ctm-1.0.tar.gz |
Description:
|
CTM 1.0 is your basic SNMP Traffic Monitor.
| | Author: | CTM web site | | File Size: | 28903 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 1ca5b5279411facaddef1fd5d002fdfe |
|
| /// File Name: |
ctm-1.1.tar.gz |
Description:
|
CTM 1.1 is your basic SNMP Traffic Monitor.
| | Author: | CTM web site | | File Size: | 29164 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 8904a579f247d4ee16a172c387e7d2c6 |
|
| /// File Name: |
emonitor-v-0.6.tar.gz |
Description:
|
emonitor 0.6 is a notification, action-based system for network, system and application monitoring. emonitor includes the following tools: emsrvmsg (Event Monitor Server Message), emsrvcmd (Event Monitor Server Command), emtlog (Event Monitor Transaction Logger), emconsole (Event Monitor Console), emputcmd (Event Monitor Put Command), emputmsg (Event Monitor Put message). The Event Monitor Project
| | File Size: | 409580 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 419b432a7d2d4ccf09d4b5754602378c |
|
| /// File Name: |
emonitor.lsm |
Description:
|
emonitor description.
| | File Size: | 7605 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 2c54f5fb7b13c0c24b5c4057c44a11f6 |
|
| /// File Name: |
logwatch-1.6.6.tar.gz |
Description:
|
LogWatch 1.6.6 is a customizable, pluggable log-monitoring system that analyzes and reports on system logs. It will go through your logs for a given period of time and make a report in the areas that you wish with the detail that you wish. Easy to use - works right out of the package on almost all systems. Now analyzes samba logs.
| | Author: | Kirk Bauer | | Changes: | fewer unmatched entries in 'secure' service, ftp-messages module prettier, name-lookups now optional for named module, added and improved ProFTPd module, much more. | | File Size: | 36751 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | e9c686de214ded15c89216fae1c21094 |
|
| /// File Name: |
mon-0.38.12.tar.gz |
Description:
|
mon 0.38pre12 - "mon" is an extensible fault detection package which can be used to monitor network and system resources. It is most useful for system and network administrators who are responsible for maintaining the operation of networks of hundreds or possibly thousands of nodes.
| | Author: | Jim Trocki | | Changes: | Too many new feature, additions, code cleanups, and bugfixes to list; see the CHANGES file. mon-0.38.12.tar.gz.sign. | | File Size: | 111393 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | ad40b05fb571ef4e4442aae3a0edbbaa |
|
| /// File Name: |
mon-0.38.12.tar.gz.sign |
Description:
|
Unavailable.
| | File Size: | 344 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | ad94b4ce8e010a8c818e5ceb65fe5281 |
|
| /// File Name: |
portsentry-0.90.tar.gz |
Description:
|
PortSentry 0.90 - PortSentry is part of the Abacus Project suite of security tools. It is a program designed to detect and respond to port scans against a target host in real-time. It runs on TCP and UDP sockets and works on most UNIX systems. Advanced stealth detection modes are available under Linux only and detect SYN, FIN, NULL, XMAS, and Oddball packet scans. All modes support real-time blocking and reporting of violations.
| | Author: | Craig Rowland | | Changes: | Renamed from Abacus Sentry to PortSentry, lots of internal code clean up and optimizations, Docs updated and it now works under Solaris, Linux, BSD variants and others. portsentry.sample.txt. | | File Size: | 37936 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 80eead64b3d6efb10748b80ecec0f54a |
|
| /// File Name: |
portsentry.sample.txt |
Description:
|
Unavailable.
| | File Size: | 3154 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | 6ecd6e85e507606a05d23cec2d3686c8 |
|
| /// File Name: |
thor1.0.tar.gz |
Description:
|
thor.pl 1.0 - thor.pl keeps tabs on suid and sgid files on your file system. It also keeps track of the checksums of your binaries and the root accounts on the system as well as a few other things. It's a handy script that helps you find possible security risks, or breakins.
| | Author: | Jerry Kilpatrick | | File Size: | 5264 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | d25bf542ae37a2fadc15d28b5f92faab |
|
| /// File Name: |
ng.sh |
Description:
|
ng.sh (netgaurd v1a1) uses tcpdump monitor for common attacks and then activates ipfwadm.
| | Author: | Ben-z | | File Size: | 2700 | | Last Modified: | Aug 16 20:02:45 1999 |
| MD5 Checksum: | 6b861113bde69593d7a9c777c34dde22 |
|
| /// File Name: |
slocate-1.5.tar.gz |
Description:
|
Secure Locate 1.5 - Secure locate provides a secure way to index and quickly search for files on your system. It uses incremental encoding just like GNU locate to compress its database to make searching faster, but it will also store file permissions and ownership so that users will not see files they do not have access to. It is a bit slower than the GNU locate, but thats the price for security.
| | Author: | Kevin Lindsay | | Changes: | A couple of bug fixes but mostly new features. You can now search using basic POSIX regular expressions. It should also be noted that Redhat 6.0 has switched from GNU Locate to Secure Locate as the default filesystem indexing/searching mechanism. | | File Size: | 18683 | | Last Modified: | Aug 16 20:02:45 1999 |
| MD5 Checksum: | 15ad0eebaf97032015c8de884c1c238d |
|
| /// File Name: |
instmon-1.5.tar.gz |
Description:
|
instmon is a shell script that monitors installations and detects the files that were added or modified.
| | Author: | Vasilis Vasaitis | | Changes: | Slightly changed the default search list (added /var/lib) and the default exclude list (added /root); instmon now uses $TMPDIR when set; Comparisons between version numbers are now done in a different way, which is more correct for the UN*X world; Fixed to work with RPM >= 2.5.0; Empty directories are now removed even more aggressively; Things are becoming complicated, so the awk command is now required, and instmon has to store some helper scripts (currently one) in /usr/local/lib/instmon. | | File Size: | 15539 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | 84857431c0daee01c59e1231e2340712 |
|
| /// File Name: |
nettest-1.1.tar.gz |
Description:
|
nettest 1.1 - Nettest is a program which monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down. It's great for xDSL/Cable/Mission Critical Network Connections.
| | Author: | Rene Chaddock | | Changes: | Fixed bug where pingnumber exibited other (unwanted) behaviour, fixed bug which caused nettest to crash under certain situations, more reliable email-sending code, added retrytime variable which allows nettest to try connection more frequently when connection is actually down. | | File Size: | 18681 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | f233bf84fc53e84eda01124435b36dea |
|
| /// File Name: |
qps-1.7.tar.gz |
Description:
|
See description above.
| | File Size: | 81664 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | 448504e02509674a1d61899e37e4628c |
|
| /// File Name: |
sxid_3.2.5.tar.gz |
Description:
|
sXid 3.2.5 - sXid is an all in one suid/sgid monitoring program designed to be run from cron on a regular basis. Basically it tracks any changes in your s[ug]id files and folders. If there are any new ones, ones that aren't set any more, or they have changed bits or other modes then it reports the changes in an easy to read format via email or on the command line.
| | Author: | Ben Collins | | Changes: | added option to specify other than the default mail program, patch to make use of TMPDIR if set. | | File Size: | 43378 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | 8a573d8916efa87a40be6854fc763189 |
|
| /// File Name: |
top-3.5beta9.tar.gz |
Description:
|
Top - A Top-CPU Usage Display provides a rolling display of top-CPU using processes on a Unix system. It also displays other information about the overall health of the system, including load averages and memory utilization. Numerous portability patches and optimizations in this release.
| | Author: | William LeFebvre | | File Size: | 234762 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | 70d5f5461bb45a53c207557c354e8108 |
|
| /// File Name: |
treeps-1.1.0.tar.gz |
Description:
|
treeps 1.1.0 - Treeps is a X/Motif program for Unix/Linux that is designed to make monitoring and interacting with the running programs on your system easy and intuative. A "real time" tree view shows the relationships between the processes and is color coded to provide easy interpretation of various values. The process tree displays any combination of users/groups and can be used to drill down into process details and then extract key fields for continous monitoring.
| | Author: | George MacDonald | | Changes: | Process Activity "LED's" to show state/load/priority, leader bars to show /group/session leaders, process tips for mouseover glances at key process info, many icon bar changes, color icons, larger and more icons, much more linux info, better user/group selection from group/user tree dialog, std. usage of colors, better auto sizing of window, many layout changes (esp star layout), RPM packages, KDE install script, man/strace/renice processes, renice subtree, single click kill, and many bug fixes. | | File Size: | 276357 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | 6a8c7ab7b0a851ee9d34a651d4ab2540 |
|
| /// File Name: |
watchdog-4.5.tar.gz |
Description:
|
watchdog is a daemon that monitors systems processes and loads, and will automatically reboot a server if the load rises above a defined level. Very useful tool.
| | Author: | Michael Meskes | | File Size: | 98974 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | 3260bd2682363b46084df55e3652b870 |
|
| /// File Name: |
qps-1.6.6.tar.gz |
Description:
|
qps 1.6.6 - Qps is a visual process manager, an X11 version of "top" or "ps" that displays processes in a window and lets you sort and manipulate them.
| | Author: | Mattias Engdegard | | Changes: | Limited Solaris 2.6 support (no sockets listing; several fields missing). Source code. Requires Qt library 1.40 or later. | | File Size: | 81702 | | Last Modified: | Aug 16 20:02:43 1999 |
| MD5 Checksum: | c917ee8e402b4eef81fa0f96a0e63213 |
|
| /// File Name: |
qps-1.6.7.tar.gz |
Description:
|
qps 1.6.7 - Qps is a visual process manager, an X11 version of "top" or "ps" that displays processes in a window and lets you sort and manipulate them.
| | Author: | Mattias Engdegard | | Changes: | replaced delete with delete[] in proc.C and fixed another Linux segfault. Source code. Requires Qt library 1.40 or later. | | File Size: | 81486 | | Last Modified: | Aug 16 20:02:43 1999 |
| MD5 Checksum: | 44c7c163569aa4264abc3094004a5f44 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
