.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / UNIX / IDS  /

Also see UNIX Network Logging Utilities.

Page 1 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 1 - 25 of 531
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: 0x333hpl.c
Description:
 0x333hpl.c compares pids in /proc with ps aux output.
Author:nsn
Homepage:http://www.0x333.org
File Size:1569
Last Modified:Apr 1 03:16:45 2003
MD5 Checksum:5f2a93e4bdce690ddebb8ea38d6d2320

 ///  File Name: aafid2-0.10.tar.gz
Description:
 AAFID is a distributed monitoring and intrusion detection system that employs small stand-alone programs/Agents to perform monitoring functions in the hosts of a network. AAFID uses a hierarchical structure to collect the information produced by each agent, by each host, and by each set of hosts, to be able to detect suspicious activity. This release is a prototype and does not implement full functionality. All modules of the system are written in Perl, and thus it is extremely portable. Although some of the Agents included with AAFID2 perform NIDS functionality, the system as a whole is a host-based intrusion detection system.
Homepage:http://www.cerias.purdue.edu/coast/projects/autonomous-agents.html
File Size:1476810
Last Modified:Sep 10 20:40:00 1999
MD5 Checksum:ac5bfe89ee4e9b1485c41b91af072d46

 ///  File Name: abacus-sentry.lsm
Description:
 Detailed descriptions of the PortSentry, HostSentry, and LogCheck tools included in the Abacus Project suite of Intrusion Detection tools. Abacus Project web site
File Size:23386
Last Modified:Aug 16 20:02:40 1999
MD5 Checksum:54b8d9d6eadd7f6f9195e6c9b8027646

 ///  File Name: acid-0.9.6b12.tar.gz
Description:
 The Analysis Console for Intrusion Databases (ACID) is a PHP-based analysis engine to search and process a database of incidents generated by security software such as IDS's and firewalls (e.g., Snort or ipchains). It provides a search interface for finding alerts matching practically any criteria, including arrival time, signature time, source/dest address/port, flags, payload, etc. ACID also provides the ability to annotate and logically group related events, delete false positives, or archive alerts among databases. A variety of statistics and graphs can be generated based on time, IP address, ports, alert classification, and sensor.
Homepage:http://acidlab.sourceforge.net
File Size:81899
Last Modified:Aug 4 08:29:14 2001
MD5 Checksum:52060fdcb7bf9a5604286396e0f4ba02

 ///  File Name: Adwids0.8b1
Description:
 The Defense Worx Network Intrusion Detection System is a linux based IDS which performs high-speed traffic analysis of a network packet to detect unauthorized traffic in real-time. Includes a Java based consile to display alerts. Changes:Now decodes DNS, has open source signatures, detects port scans and sweeps, and contains performance improvements.
Author:Defense Worx
Homepage:http://www.defenseworx.com
File Size:169589
Last Modified:Oct 6 23:48:19 2000
MD5 Checksum:b5637a5fdc8808d57379b5083ffb6e85

 ///  File Name: Adwids0_8B2.sh
Description:
 The Defense Worx Network Intrusion Detection System is a linux based IDS which performs high-speed traffic analysis of a network packet to detect unauthorized traffic in real-time. Includes a Java based console to display alerts.
Author:Defense Worx
Homepage:http://www.defenseworx.com
Changes:Bug fixes in the sensor, speed improvements, and Java GUI changes.
File Size:170869
Last Modified:Nov 29 23:03:28 2000
MD5 Checksum:c63df8c9433b044ae383367479921d21

 ///  File Name: aide-0.11.tar.gz
Description:
 AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determining which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
Author:Rami Lehti
Homepage:http://www.cs.tut.fi/~rammer/aide.html
Changes:Various bug fixes.
File Size:266978
Last Modified:Feb 25 21:08:59 2006
MD5 Checksum:9a44e5386b0355ef57c60f627ff4d085

 ///  File Name: aide-0.4.tar.gz
Description:
 AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determening which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
Author:Rami Lehti
File Size:182481
Last Modified:Aug 25 07:53:47 1999
MD5 Checksum:0eb1a79e5e0b96f876033310ee047535

 ///  File Name: aide-0.5.tar.gz
Description:
 AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determening which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
Author:Rami Lehti
Homepage:http://www.cs.tut.fi/~rammer/aide.html
Changes:MD5 sums are now correct. Users must update their databases; they have false sums. With hash library support, you can have many more hash algorithms, and many bugfixes have been made. Note that the author's PGP keys have changed.
File Size:192346
Last Modified:Jan 2 14:27:58 2000
MD5 Checksum:4615593338a1d860459f44a55b484dba

 ///  File Name: aide-0.6.tar.gz
Description:
 AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determening which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
Author:Rami Lehti
Homepage:http://www.cs.tut.fi/~rammer/aide.html
Changes:A lot of bug fixes. MD-sums were again broken; please update.
File Size:212475
Last Modified:Feb 8 13:55:35 2000
MD5 Checksum:3697a80834816c022756acdbb4c8ec21

 ///  File Name: aide-0.7.tar.gz
Description:
 AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determening which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
Author:Rami Lehti
Homepage:http://www.cs.tut.fi/~rammer/aide.html
Changes:Bug fixes, support for compressed database using zlib, and updated Mhash support along with linkname checking.
File Size:219837
Last Modified:May 9 18:52:22 2000
MD5 Checksum:0b2ed9eb3b608a19418800b87f5be848

 ///  File Name: aide-0.8.tar.gz
Description:
 AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determining which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
Author:Rami Lehti
Homepage:http://www.cs.tut.fi/~rammer/aide.html
Changes:Lots of bugs were fixed! A syslog backend was added. The report format was changed. Lots of parameters were added. ACL support for SunOS 5.x (and compatibles) was added. libgcrypt is now separate and required.
File Size:197272
Last Modified:Feb 19 02:43:06 2002
MD5 Checksum:84b608ccf5051d41a8ccfee87ced5428

 ///  File Name: aide-0.9.tar.gz
Description:
 AIDE (Advanced Intrusion Detection Environment) is a free replacement for Tripwire(tm). It generates a database that can be used to check the integrity of files on server. It uses regular expressions for determining which files get added to the database. You can use several message digest algorithms to ensure that the files have not been tampered with.
Author:Rami Lehti
Homepage:http://www.cs.tut.fi/~rammer/aide.html
Changes:Now has the ability to compare two databases, support for using HMAC to verify configuration and the database, and includes bugfixes.
File Size:216096
Last Modified:Jun 5 01:14:41 2002
MD5 Checksum:877b1f515a9e25afda75e06805d687fb

 ///  File Name: alert_1.3.tar
Description:
 IDS Alert Script (ver 1.3) for Checkpoint Firewall-1 (Unix only). Build Intrustion Detection into your firewall. Features include: Automated alerting, logging, and archiving, Automated blocking of attacking source, Automated identification and email remote site, and Installation and test script. Ver 1.3 Optimized for performance, over 50% speed increase. Documentation here.
Author:Lance Spitzner
Homepage:http://www.enteract.com/~lspitz/
File Size:18432
Last Modified:Nov 29 14:22:24 1999
MD5 Checksum:59ead035a2a3d0d0079ebc74ec132664

 ///  File Name: angel-0.7.tar.gz
Description:
 Angel is a simple yet useful tool to monitor the services on your network. Perl.
File Size:183976
Last Modified:Aug 16 20:02:22 1999
MD5 Checksum:9a89fad06109cab2a6d07a6112cf2bbb

 ///  File Name: argus-1.5-linux.tar.gz
Description:
 See below.
File Size:558602
Last Modified:Aug 16 20:02:15 1999
MD5 Checksum:b2ee1831b9ecd6a1d4dabfdbebfb52e4

 ///  File Name: argus-1.5.patch
Description:
 See below.
File Size:8344
Last Modified:Aug 16 20:02:15 1999
MD5 Checksum:e7f04e2791ce3f4d2248c5ebe0a52e02

 ///  File Name: argus-1.5.tar.gz
Description:
 See below.
File Size:107396
Last Modified:Aug 16 20:02:15 1999
MD5 Checksum:9c7052fb1742f9f6232a890267c03f3c

 ///  File Name: argus-1.5.tar.Z
Description:
 See below.
File Size:0
Last Modified:Aug 16 20:02:15 1999
MD5 Checksum:d41d8cd98f00b204e9800998ecf8427e

 ///  File Name: argus-1.7.beta.1b.tar.gz
Description:
 IP network transaction auditing tool. Reads network datagrams promiscuously, and generates network traffic status records.
File Size:365865
Last Modified:Aug 16 20:02:15 1999
MD5 Checksum:c67479072f0e46fbbf8ae029408ea60d

 ///  File Name: attackwatch-0.0.1.tgz
Description:
 Attackwatch is intended to enhance the security of small private networks that are already protected by a restrictively configured firewall but which still have a few ports open. Attackwatch will analyze the firewall output in near-realtime and will run scripts in response to incoming packets that got logged.
File Size:8587
Last Modified:Apr 22 14:32:02 2001
MD5 Checksum:ec92a6f2524a4b294d6cf9f451278d66

 ///  File Name: audit.tgz
Description:
 Audit is a script which will record any changes to files on your machine by generating a checksum for each file in the directories scanned. It was built with simplicity and ease of use in mind, comes with a GUI, and has a reasonable set of defaults in place out of the box.
Author:Digs
Homepage:http://console-newsletter.hypermart.net/audit/index.htm
File Size:89914
Last Modified:Jun 6 18:33:41 2000
MD5 Checksum:cb9ce619c78cdbfd3589fa613576a7d0

 ///  File Name: autobuse-snap915639608.tar.gz
Description:
 Autobuse is Perl daemon which identifies probes and the like in logfiles and automatically reports them via email. Supports monitoring of Linux 2.0 ipfw and Apache logfiles.
Author:Grant Taylor
File Size:17426
Last Modified:Aug 16 20:02:36 1999
MD5 Checksum:e72e0946d4b61ee6000fec331c5a17b3

 ///  File Name: autobuse-snap917980385.tar.gz
Description:
 Autobuse is a log-monitoring program which automatically reports script-kiddie probes to whomever you like.
Author:Grant Taylor
File Size:17768
Last Modified:Aug 16 20:02:38 1999
MD5 Checksum:4486077dd1baa32ebd9a84d3c5fea042

 ///  File Name: autobuse-snap918416038.tar.gz
Description:
 Autobuse - snapshot918416038 - Autobuse is a log-monitoring program which automatically reports script-kiddie probes to whomever you like.
Author:Grant Taylor
File Size:17879
Last Modified:Aug 16 20:02:38 1999
MD5 Checksum:a0ade06708a821c3a8ff8d7c64af4112
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice