.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / UNIX / IDS  /

Also see UNIX Network Logging Utilities.

Page 18 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 425 - 450 of 531
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: mat-0.18.tar.gz
Description:
 MAT v0.18 - MAT is a distributed monitoring and management tool for Linux, SGI, SunOS, and Solaris machines. The tool provides an easy to use GUI interface from which the sysadmin, or designated user can administer many of the common UNIX configuration files. MAT can monitor many system parameters, producing usage graphs, and triggering alarms. The current release of the tool can add modify and delete: Users, Hosts, Groups, Mounts, Motd, DNS client config, Services, Aliases, Cron jobs, Syslog config, NFS exports, DNS records, and NIS maps. Monitoring functions allow you to inspect: Syslog files, Routing tables, disk space, exports and processes. MATd is a GUI configurable system monitoring daemon. It currently can monitor: Disk use, Network connectivity, CPU use, Run-queue, Logins, SMTP daemons, FTP servers and Required processes. On Linux machines it also produces graphs of memory and swap use. New to this release is the ability to discover all the parameters, memory, cpu, swap etc automatically. MATd can also run user provided scripts if a threshold is exceeded, notifing the administrator of potential problems. Key features: control many hosts from a single console, ability to deligate responsibility to others, monitor several system parameters for trend analysis, DNS, and NIS servers are easliy managed. New this release: hooks to allow users to extend the program, automatic discovery of parameters it can monitor, bug fixes, much more. 1727k.
Author:S. Mark Black
File Size:1727712
Last Modified:Aug 16 20:02:37 1999
MD5 Checksum:62f3a9d2e292bcf3ec689085e276b40c

 ///  File Name: netbusd.c
Description:
 A UNIX clone of Netbuster for Windows 95. Logs people attempting to exploit netbus.
Author:BigDawg
File Size:11063
Last Modified:Aug 16 20:02:37 1999
MD5 Checksum:bd0bce4c55db3aeec2f2e0f404f5d2e7

 ///  File Name: autobuse-snap915639608.tar.gz
Description:
 Autobuse is Perl daemon which identifies probes and the like in logfiles and automatically reports them via email. Supports monitoring of Linux 2.0 ipfw and Apache logfiles.
Author:Grant Taylor
File Size:17426
Last Modified:Aug 16 20:02:36 1999
MD5 Checksum:e72e0946d4b61ee6000fec331c5a17b3

 ///  File Name: ears-0.7.tar.gz
Description:
 EARS (Emergency Audit Response System) v0.7 - EARS is a console tool designed to detect, monitor and respond to annomalies (such as intrusions) in real time. It offers complete control of the process table, filesystem(s) and network interface(s) maintained by the operating system. Autonomous functionality is optional as a separate module.
Author:Tishina Syndicate
File Size:31272
Last Modified:Aug 16 20:02:36 1999
MD5 Checksum:b930fa48b3ad122aeb0b95a61563e2a7

 ///  File Name: qps-1.6.tar.gz
Description:
 Qps v1.6 - See description above.
File Size:145272
Last Modified:Aug 16 20:02:36 1999
MD5 Checksum:9055eb67beeb4f26cd185755617be642

 ///  File Name: dtk-1999-01-07.tar
Description:
 Deception Toolkit v1999-01-07 - DTK simply listens for inputs and provides responses that seem normal (i.e., full of bugs). In the process, it logs what is being done, provides sensible (if not quite perfect) answers, and lulls the attacker into a false sense of (your) insecurity. Has too many great features to list here, so check out The Deception Toolkit Home Page. DTK v1999-01-07 makes several minor improvements and contains some minor bugfixes.
Author:Fred Cohen and Associates
File Size:931840
Last Modified:Aug 16 20:02:35 1999
MD5 Checksum:4c0030b526823e9c992114353551fb32

 ///  File Name: step.htm
Description:
 Eight Steps to A Working Intrusion Detection System - The SANS Institute. Preface and instructions for STEP package below.
File Size:60436
Last Modified:Aug 16 20:02:35 1999
MD5 Checksum:c880c48f3099b3cb999cf34e2e224ffd

 ///  File Name: tripwire-1.30-1.linux.tar.gz
Description:
 Tripwire v1.30-1 for Linux - Tripwire detects any variance in file integrity. This version has been "optimized" for Linux.
Author:Tripwire Security Systems
File Size:303968
Last Modified:Aug 16 20:02:35 1999
MD5 Checksum:fd3374db2ba26fe11428e5fac3a98cfa

 ///  File Name: watchdog-4.2.tar.gz
Description:
 watchdog is a daemon that monitors systems processes and loads, and will automatically reboot a server if the load rises above a defined level. Very useful tool. 98k.
Author:Michael Meskes
File Size:100539
Last Modified:Aug 16 20:02:35 1999
MD5 Checksum:2b8061871a0f1dbd24967c975b66b8ff

 ///  File Name: clobberd-4.3-1.tar.bz2
Description:
 User/Resource Monitor. Used to keep tabs on users.
Author:Jason Nunn
File Size:36426
Last Modified:Aug 16 20:02:34 1999
MD5 Checksum:042a2b284c49537a75b6fa2d1d7e32a0

 ///  File Name: dtk-0.9.tar
Description:
 The Deception ToolKit (DTK) is a toolkit designed to give defenders a couple of orders of magnitude advantage over attackers. We use deception to counter attacks. In the case of DTK, the deception is intended to make it appear to attackers as if the system running DTK has a large number of widely known vulnerabilities. DTK's deception is programmable, but it is typically limited to producing output in response to attacker input in such a way as to simulate the behavior of a system which is vulnerable to the attackers method. V0.9 introduces the fake operating system name to the configure file and appropriate changes to deceptions to include this deception throughout the distribution. It also does automatic configuration of the secure Web server (thttpd) and generic.c and support for SCO Unix. 1.1MB.
Author:Fred Cohen and Associates
File Size:1105920
Last Modified:Aug 16 20:02:34 1999
MD5 Checksum:f10ae74d52935f3aec9f9e30a8aff8f0

 ///  File Name: instmon-1.3.tar.gz
Description:
 instmon v1.3 - instmon is a shell script that monitors installations and detects the files that were added or modified.
Author:Vasilis Vasaitis
File Size:13856
Last Modified:Aug 16 20:02:34 1999
MD5 Checksum:0b27b1ae6f11656b9332449453696aca

 ///  File Name: nannie-1.0.tar.gz
Description:
 Nannie's basic purpose is to watch system files that should not be changed, at least in theory. It monitors them for change in inode, size, etc notifies you if a change occurs. New features: completely rewritten, now logs to syslog instead of sending email, can handle a directory in nannie.cfg (will parse all files in directory), MUCH more error checking.
Author:Cole Tuininga
File Size:3826
Last Modified:Aug 16 20:02:34 1999
MD5 Checksum:9c0d3f60742929b511debecaf53fd162

 ///  File Name: qps-1.5.tar.gz
Description:
 Qps v1.5 - Qps is a visual process manager, an X11 version of "top" or "ps" that displays processes in a window and lets you sort and manipulate them. Qps can: change nice value of a process, alter the scheduling policy and soft realtime priority of a process, display the TCP/UDP sockets used by a process, and names of the connected hosts, display the memory mappings of the process (which files and shared libraries are loaded where), display the open files of a process, kill or send any other signal to selected processes, display the load average as a graph, and use this as its icon when iconified, show (as graph or numbers) current CPU, memory and swap usage, sort the process table on any attribute (size, cpu usage, owner etc), and does much, much more. UNIX domain sockets are visible in the Files table, SMP support. Very nice GUI. Requires Qt library 1.40 or later and Linux 2.0 or later, or Solaris 2.5.x.
Author:Mattias Engdegard
File Size:142111
Last Modified:Aug 16 20:02:34 1999
MD5 Checksum:7d996affc86ab73df89fcf6f0727c062

 ///  File Name: wipl-990104.src.tar.gz
Description:
 wipl v990104 - The wipl program package is able to make statistics about which network cards transfer how much on a LAN segment or through certain routers or servers. The program package contains a daemon program which collects and processes the information for network monitoring and realtime statistics.
Author:Christian Worm Mortensen
File Size:52593
Last Modified:Aug 16 20:02:34 1999
MD5 Checksum:c488800ffe2c4661034a30f2656f3e05

 ///  File Name: dtk-0.8.tar
Description:
 Deception Toolkit v0.8 - Too many new improvements and code optimizations in this release to list. Just get it.
File Size:860160
Last Modified:Aug 16 20:02:33 1999
MD5 Checksum:9f25ae3c734677990ea21754354541c5

 ///  File Name: gogmagog-2.tar.gz
Description:
 Unix systems integrity monitor used to ensure core resources are left unaltered on a given host. gogmagog is composed of highly configurable Bourne shell scripts that collect and analyze systems information, scanning for ANY irregularities or discrepancies. Designed with all major flavors of UNIX in mind. This version has a GogView GUI that makes it much easier to monitor multiple hosts.
Author:C. Parisel
File Size:12342
Last Modified:Aug 16 20:02:33 1999
MD5 Checksum:928bfc3edd38b1e18d4863a7e36d8cbe

 ///  File Name: l0pht-nfr.tar.gz
Description:
 "The L0pht NFR Intrusion Detection System modules have been updated to cover some of the latest popular network attacks. Featured prominently in the update is a Back Orifice detection module which, we believe, is better than anything else on the market. Better than ISS's RealSecure BO detection as well as that of stand alone BO detectors that cost upwards of $5000. Do your network a favor and download our IDS modules (which are FREE) and NFR which is free for internal, non-commercial use."
Author:L0pht Heavy Industries
File Size:15145
Last Modified:Aug 16 20:02:33 1999
MD5 Checksum:9f052542d9d63ce7e1c23a07113a436a

 ///  File Name: nannie-0.9.tar.gz
Description:
 Nannie's basic purpose is to watch system files that should not be changed, at least in theory. It monitors them for change in inode, size, etc notifies you if a change occurs.
Author:Cole Tuininga
File Size:3014
Last Modified:Aug 16 20:02:33 1999
MD5 Checksum:525a3abec51832be1e49aa54a828023f

 ///  File Name: syn.pl
Description:
 tcpdump script which detects network activity - designed specifically to detect new "stealth and undetectable" nmap v2.00-2.01 scans (TCP, SYN, FIN, Frag, Xmas, Null, and UDP, etc...).
Author:Programmaton
File Size:3776
Last Modified:Aug 16 20:02:33 1999
MD5 Checksum:1b643bc7c0fd8a37b6e0de3b3d27cadf

 ///  File Name: autostatus-1.1.tar.gz
Description:
 autostatus is yet another network monitoring program. Easy to use and configure, fast and efficient. It exploits maximum parallelism during its checking to speed up monitoring.
Author:Dave Andersen
File Size:24943
Last Modified:Aug 16 20:02:32 1999
MD5 Checksum:134f76a43a3f0397f856250dd9e8e900

 ///  File Name: gogmagog-1.tar.gz
Description:
 UNIX systems integrity monitor - highly configurable Bourne shell scripts that collect and analyze systems information, scanning for ANY irregularities or discrepancies. Designed with all major flavors of UNIX in mind.
Author:C. Parisel
File Size:5934
Last Modified:Aug 16 20:02:32 1999
MD5 Checksum:73a163942b986ae4d0d09d0dfd47410b

 ///  File Name: hum-A-summer98.tar.gz
Description:
 See above.
File Size:1666155
Last Modified:Aug 16 20:02:32 1999
MD5 Checksum:812a7853f61938018b11b18efbd471c2

 ///  File Name: ifstatus2.2.tar.gz
Description:
 Ifstatus checks all network interfaces on the system, and reports any that are in debug or promiscuous mode, which may be a sign of unauthorized access to the system.
Author:David A. Curry
File Size:12295
Last Modified:Aug 16 20:02:32 1999
MD5 Checksum:3da19339275d0f06fb48620f79ef6499

 ///  File Name: instmon-1.2.tar.gz
Description:
 instmon is a shell script that monitors installations and detects the files that were added or modified. It can be very helpful for packages that only come in source form. It can be used by system administrators and simple users alike. instmon home page
File Size:12330
Last Modified:Aug 16 20:02:32 1999
MD5 Checksum:81be9cb76ff83503f46dedd5c0b127bc
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice