Section: .. / UNIX / IDS /
| /// File Name: |
mat-0.17.tar.gz |
Description:
|
MAT is a distributed monitoring and management tool for Linux, SunOS, and Solaris machines.
| | File Size: | 996764 | | Last Modified: | Aug 16 20:02:28 1999 |
| MD5 Checksum: | cfadb3410ac5d19bbca14c36cf0c6255 |
|
| /// File Name: |
mat-0.18.tar.gz |
Description:
|
MAT v0.18 - MAT is a distributed monitoring and management tool for Linux, SGI, SunOS, and Solaris machines. The tool provides an easy to use GUI interface from which the sysadmin, or designated user can administer many of the common UNIX configuration files. MAT can monitor many system parameters, producing usage graphs, and triggering alarms. The current release of the tool can add modify and delete: Users, Hosts, Groups, Mounts, Motd, DNS client config, Services, Aliases, Cron jobs, Syslog config, NFS exports, DNS records, and NIS maps. Monitoring functions allow you to inspect: Syslog files, Routing tables, disk space, exports and processes. MATd is a GUI configurable system monitoring daemon. It currently can monitor: Disk use, Network connectivity, CPU use, Run-queue, Logins, SMTP daemons, FTP servers and Required processes. On Linux machines it also produces graphs of memory and swap use. New to this release is the ability to discover all the parameters, memory, cpu, swap etc automatically. MATd can also run user provided scripts if a threshold is exceeded, notifing the administrator of potential problems. Key features: control many hosts from a single console, ability to deligate responsibility to others, monitor several system parameters for trend analysis, DNS, and NIS servers are easliy managed. New this release: hooks to allow users to extend the program, automatic discovery of parameters it can monitor, bug fixes, much more. 1727k.
| | Author: | S. Mark Black | | File Size: | 1727712 | | Last Modified: | Aug 16 20:02:37 1999 |
| MD5 Checksum: | 62f3a9d2e292bcf3ec689085e276b40c |
|
| /// File Name: |
mat.lsm |
Description:
|
Unavailable.
| | File Size: | 2573 | | Last Modified: | Aug 16 20:02:17 1999 |
| MD5 Checksum: | 671c7a745de08df0a6873076c3d77e4f |
|
| /// File Name: |
md5-tool.tgz |
Description:
|
If you have an md5 checksumming utility on your system, you can use these scripts for a "poor man's tripwire". These do several quick checks for archiving and security purposes.
| | Author: | Simple Nomad | | Homepage: | http://razor.bindview.com | | File Size: | 4738 | | Last Modified: | Feb 17 14:19:59 2000 |
| MD5 Checksum: | 41f0416f00dfa37b2e904ad115bee208 |
|
| /// File Name: |
md5mon-1.3.tar.gz |
Description:
|
MD5mon is a file monitor that verifies files by computing their checksums. The shell script is suitable for use as a basic security checking tool from cron. It features configurable monitoring levels, local copies of find/md5sum, and integrity checks to prevent tampering with itself. It can also use a more secure shasum instead of md5sum.
| | Homepage: | http://members.linuxstart.com/~winitzki/md5mon.html | | File Size: | 11510 | | Last Modified: | Nov 3 18:53:59 2000 |
| MD5 Checksum: | e7d077559fe8383a728fca0c1cb1b734 |
|
| /// File Name: |
md5mon-1.3a.tar.gz |
Description:
|
MD5mon is a file monitor that verifies files by computing their checksums. The shell script is suitable for use as a basic security checking tool from cron. It features configurable monitoring levels, local copies of find/md5sum, and integrity checks to prevent tampering with itself. It can also use a more secure shasum instead of md5sum.
| | Homepage: | http://members.linuxstart.com/~winitzki/md5mon.html | | Changes: | A bugfix where checksums were not updated correctly in some cases. | | File Size: | 11556 | | Last Modified: | Feb 23 17:26:09 2001 |
| MD5 Checksum: | 056b68dce82a2bededb23634ffa2a935 |
|
| /// File Name: |
mod_id_1.0.tar.gz |
Description:
|
Mod_Id is an interesting Apache Module which is an IDS system watching for suspicious URL's.
| | Author: | Burak | | Homepage: | http://www.hacettepe.edu.tr/~burak | | File Size: | 31774 | | Last Modified: | Feb 27 02:19:40 2001 |
| MD5 Checksum: | 695e16ef65ffaf086eaca589a1f92212 |
|
| /// File Name: |
mod_protection-0.0.1.tar.gz |
Description:
|
Mod_Protection is an apache module that integrate basic function of an IDS (intrusion detection system) and of a firewall (not yet). Your apache administrator have only to install mod_protection and define rules. When a malicious client sends a request that matches on your rules the administrator will be warned and the client gets a user defined page or a error or something that notifies that now he will be persecuted or ... The warning system just write on a socket, so you can put on the other side of the socket an application that send you a mail, an SMS, a message in your favorite IM or a notify in your IRC client.
| | Author: | Yaroze | | Homepage: | http://www.twlc.net | | File Size: | 26222 | | Last Modified: | Mar 6 12:33:27 2002 |
| MD5 Checksum: | 6fb1604b85b63660b43d0806103a3d84 |
|
| /// File Name: |
mod_protection-0.0.2.tar.gz |
Description:
|
Mod_protection is an apache module that integrate basic function of an IDS (intrusion detection system) and of a firewall (just an emulation for now). Your apache administrator have only to install mod_protection and define rules. A normal NIDS can't check SSL protected traffic, where mod_protection can. When a malicious client sends a request that matches on your rules the administrator will be warned and the client gets a user defined page or a error or warning.
| | Author: | Yaroze | | Homepage: | http://www.twlc.net | | Changes: | Three new directives - BlockTime, PairAlert, and PairAlertMatch. Blocktime does firewall emulation. Updated docs. Rules are now in an external file. | | File Size: | 46164 | | Last Modified: | Mar 20 01:58:54 2002 |
| MD5 Checksum: | 021f1fcdf44ec86204c47ee92eca0a2b |
|
| /// File Name: |
mom.tar.gz |
Description:
|
System monitoring front end tool.
| | Author: | William Annis | | File Size: | 72988 | | Last Modified: | Aug 16 20:02:16 1999 |
| MD5 Checksum: | fec4ef04c43faf5abde09fcf00c75531 |
|
| /// File Name: |
mon-0.37l.tar.gz |
Description:
|
mon is an extensible service monitoring daemon which can be used to monitor network or non-network resources. Service monitors that come with the distribution can test for ping, telnet, ftp, smtp, http, nntp, pop3, imap, disk space, and SNMP queries.
| | File Size: | 67654 | | Last Modified: | Aug 16 20:02:17 1999 |
| MD5 Checksum: | 2d7e58d1d933d31c0eeffc997121edb3 |
|
| /// File Name: |
mon-0.38.12.tar.gz |
Description:
|
mon 0.38pre12 - "mon" is an extensible fault detection package which can be used to monitor network and system resources. It is most useful for system and network administrators who are responsible for maintaining the operation of networks of hundreds or possibly thousands of nodes.
| | Author: | Jim Trocki | | Changes: | Too many new feature, additions, code cleanups, and bugfixes to list; see the CHANGES file. mon-0.38.12.tar.gz.sign. | | File Size: | 111393 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | ad40b05fb571ef4e4442aae3a0edbbaa |
|
| /// File Name: |
mon-0.38.12.tar.gz.sign |
Description:
|
Unavailable.
| | File Size: | 344 | | Last Modified: | Aug 16 20:02:46 1999 |
| MD5 Checksum: | ad94b4ce8e010a8c818e5ceb65fe5281 |
|
| /// File Name: |
mon-0.38pre7.tar.gz |
Description:
|
mon 0.38pre7 - "mon" is an extensible fault detection package which can be used to monitor network and system resources. It is most useful for system and network administrators who are responsible for maintaining the operation of networks of hundreds or possibly thousands of nodes.
| | Author: | Jim Trocki | | Changes: | Changes to period behavior, trap enhancements, basedir support, and more. mon-0.38pre7.tar.gz.sign. | | File Size: | 117141 | | Last Modified: | Aug 16 20:02:40 1999 |
| MD5 Checksum: | 663a1a9e21ec3e7b90e05fe8fde11705 |
|
| /// File Name: |
mon-0.38pre7.tar.gz.sign |
Description:
|
PGP signature for mon 0.38pre7.
| | File Size: | 344 | | Last Modified: | Aug 16 20:02:40 1999 |
| MD5 Checksum: | a421f18650959c0c54f9dc396bf301f2 |
|
| /// File Name: |
Monitor-1.0.0.tar.gz |
Description:
|
The Monitor is a small file monitoring program. Can handle an unlimited number of files, and can be configured to timestamp each line displayed. It also supports basic parsing of syslogs (compressing the output).
| | File Size: | 70621 | | Last Modified: | Aug 16 20:02:21 1999 |
| MD5 Checksum: | d0254959a5673f4c94c3384b3ea4d7ba |
|
| /// File Name: |
monitord-3.5beta.tar.gz |
Description:
|
The Network Security Monitor Daemon is a lightweight network security monitor for TCP/IP LANs which will capture certain network events and record them in a relational database. The recorded data is then made available for analysis via a CGI-based interface.
| | Homepage: | http://sourceforge.net/projects/monitord | | File Size: | 32437 | | Last Modified: | Feb 8 18:26:38 2001 |
| MD5 Checksum: | 20a7943b800f42d9b43dc7611a2d243d |
|
| /// File Name: |
monitord-4.0beta.tar.gz |
Description:
|
The Network Security Monitor Daemon is a lightweight (distributed?) network security monitor for TCP/IP LANs which will capture certain network events and record them in a relational database. The recorded data is then made available for analysis via a CGI-based interface.
| | Homepage: | http://sourceforge.net/projects/monitord | | Changes: | Improved security - No threads run as root. Added a new statistical thread and an HTTP server thread (which serves statistics in XML/XSL). | | File Size: | 34185 | | Last Modified: | Dec 18 01:02:29 2001 |
| MD5 Checksum: | ce6dfe55f8de34afa03e3e5d51685b7a |
|
| /// File Name: |
mwcollect-3.0.0.tar.bz2 |
Description:
|
mwcollect is an easy solution to collect worms and other autonomous spreading malware in a non-native environment like Linux.
| | Author: | Honeynet Project | | Homepage: | http://www.mwcollect.org/ | | Changes: | First v3 core based version that catches a whole bunch of malware. | | File Size: | 53294 | | Last Modified: | Nov 1 00:34:28 2005 |
| MD5 Checksum: | e36833c7f9da5e485c235eb9de266444 |
|
| /// File Name: |
mwcollect-3.0.3.tar.bz2 |
Description:
|
mwcollect is an easy solution to collect worms and other autonomous spreading malware in a non-native environment like Linux. The mwcollect daemon mwcollectd opens ports that are known to be commonly exploited by Malware and simulates certain known vulnerabilities on them.
| | Author: | Honeynet Project | | Homepage: | http://www.mwcollect.org/ | | Changes: | The Threestone mwcollect version fixes some timeout bugs and should increase overall performance. The submit-gotek module for Alliance support has been added and this version now finally builds and runs very good on FreeBSD. | | File Size: | 72623 | | Last Modified: | Feb 5 22:13:14 2006 |
| MD5 Checksum: | d9ecc6cd8838d6ade4b486e9e27e4cfb |
|
| /// File Name: |
nabou-1.2.tar.gz |
Description:
|
nabou is a Perl script which can be used to monitor changes to your system. It provides file integrity checking, and can also watch crontabs, suid files and user accounts for changes. It stores all data in standard dbm databases.
| | Author: | Thomas Linden | | Homepage: | http://www.0x49.org/nabou/ | | File Size: | 12991 | | Last Modified: | Aug 7 14:58:59 2000 |
| MD5 Checksum: | 98aac6f969c6ffe61a5e4618e2a644a4 |
|
| /// File Name: |
nabou-1.4.tar.gz |
Description:
|
nabou is a Perl script which can be used to monitor changes to your system. It provides file integrity checking, and can also watch crontabs, suid files and user accounts for changes. It stores all data in standard dbm databases.
| | Author: | Thomas Linden | | Homepage: | http://www.0x49.org/nabou/ | | Changes: | Many bugs were fixed. Some new commandline flags were added: --quiet (report only changes) and --update (update a database record for a file). It can now check the disk usage of a directory, and you can now define your own checks using inline Perl scriptlets. | | File Size: | 20235 | | Last Modified: | Aug 16 23:21:52 2000 |
| MD5 Checksum: | c7d6f2938e846c94ae4796a2d37467be |
|
| /// File Name: |
nabou-1.5.tar.gz |
Description:
|
nabou is a Perl script which can be used to monitor changes to your system. It provides file integrity checking, and can also watch crontabs, suid files and user accounts for changes. It stores all data in standard dbm databases.
| | Author: | Thomas Linden | | Homepage: | http://www.0x49.org/nabou/ | | Changes: | This release includes many bugfixes, database encryption support, process monitoring capabilities, and some more output options. | | File Size: | 34553 | | Last Modified: | Sep 12 17:58:40 2000 |
| MD5 Checksum: | c84b8d6df7348aec42e97cdb36ace23a |
|
| /// File Name: |
nabou-1.7.tar.gz |
Description:
|
nabou is a Perl script which can be used to monitor changes to your system. It provides file integrity checking, and can also watch crontabs, suid files and user accounts for changes. It stores all data in standard dbm databases.
| | Author: | Thomas Linden | | Homepage: | http://www.nabou.org | | Changes: | Better command line behavior which now supports more configuration options. It is now possible to completely replace tripwire with nabou. | | File Size: | 86637 | | Last Modified: | Jun 1 19:59:06 2001 |
| MD5 Checksum: | 555546c4f0041d4eda99fd7e222ae832 |
|
| /// File Name: |
nabou-1.8.tar.gz |
Description:
|
nabou is a Perl script which can be used to monitor changes to your system. It provides file integrity checking, and can also watch crontabs, suid files and user accounts for changes. It stores all data in standard dbm databases.
| | Author: | Thomas Linden | | Homepage: | http://www.nabou.org | | Changes: | While 1.7 fixed many bugs, it included some new ones. Everybody who has 1.7 in use is urged to upgrade to 1.8. Directory recursion and some other ugly bugs have been fixed. Two new statements are available, and all features of the program have been tested before release. | | File Size: | 89297 | | Last Modified: | Jun 4 18:09:03 2001 |
| MD5 Checksum: | 943b114cfbbbb3476bbecf7339401589 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
