.:[ packet storm ]:.
                               
back to your roots
back to your roots

 Section:  .. / UNIX / IDS  /

Also see UNIX Network Logging Utilities.

Page 1 of 22
<< 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 >> Files 1 - 25 of 531
Currently sorted by: Last ModifiedSort By: File Name, File Size

 ///  File Name: samhain-2.5.0.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
File Size:1828218
Last Modified:Nov 1 14:38:02 2008
MD5 Checksum:c07e8d93d05c66b36e9ee407bbd34a4f

 ///  File Name: eng-4.23-public.rar
Description:
 ENG, or Encore Next Generation, is a false-negative morphic tool that can bypass IDS/IPS via the randomization of return addresses, random writable addresses, junk code injection, and more.
Author:Nelson Brito
File Size:632464
Last Modified:Sep 20 14:56:47 2008
MD5 Checksum:10f2c84adb27a488a0c5f1435b156cda

 ///  File Name: nng-4.13r-public.rar
Description:
 NNG is a tool that creates crafted packets to cause MS02-039 false-positives against IPS/IDS. NNG does not have the same approach used by Snot and Stick, where the main goal is DoSing the IPS. Instead, NNG tries to make IPS/IDS "numbed" enough to have the leakage of real attack.
Author:Nelson Brito
File Size:616879
Last Modified:Sep 17 00:00:17 2008
MD5 Checksum:941a9a2a2f328b73989165de822527df

 ///  File Name: distack-1.1.0-dev.tar.gz
Description:
 Distack is a framework for local and distributed attack detection and traffic analysis. It can run on live interfaces or traces files, as well as in simulation environments. Therefore it provides easy ways to develop attack detection mechanisms and evaluate them on a large-scale in simulated networks.
Homepage:http://www.tm.uka.de/distack
File Size:114712
Last Modified:Sep 3 17:27:17 2008
MD5 Checksum:3fb4c5502309f3badd504a961d5c19db

 ///  File Name: samhain-2.4.6.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1791222
Last Modified:Sep 3 16:58:20 2008
MD5 Checksum:b707b7b7207b4bfa6357fe70795ef57d

 ///  File Name: bh-0.8.6.tgz
Description:
 Beholder is a wireless intrusion detection tool that looks for anomalies in a wifi environment.
Author:Nelson Murilo
Homepage:http://www.beholderwireless.org/
File Size:37682
Last Modified:Aug 20 03:19:46 2008
MD5 Checksum:65eaed3776355063d4cd9131f1515a07

 ///  File Name: samhain-2.4.5a.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1790423
Last Modified:Aug 18 18:54:44 2008
MD5 Checksum:b78bd04ff0661e94a1387fe0e84586b9

 ///  File Name: prelude-manager-0.9.14.tar.gz
Description:
 Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
Homepage:http://prelude.sourceforge.net
Changes:Some GnuTLS 2.2.0 support added, fixed a crash, and some other improvements.
File Size:753987
Last Modified:Jul 18 20:41:28 2008
MD5 Checksum:ca47665fcf299732509459956297320b

 ///  File Name: prelude-manager-0.9.13.tar.gz
Description:
 Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
Homepage:http://prelude.sourceforge.net
Changes:Updated libev and GnuLib code. Prelude-Manager-SMTP plugin is now open sourced.
File Size:746817
Last Modified:Jun 27 11:58:35 2008
MD5 Checksum:b83b6bf8ce7ca3976446c830c0602ce2

 ///  File Name: samhain-2.4.4.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1729502
Last Modified:May 6 16:13:34 2008
MD5 Checksum:6777eb51fb868b543ba846a6fa5f41fd

 ///  File Name: capture-server-2.1.0-300-src.zip
Description:
 Capture is a high interaction client honeypot / honeyclient. A client honeypot/ honeyclient is a security technology that allows one to find malicious servers on a network. Capture identifies malicious servers by interacting with potentially malicious servers using a dedicated virtual machine and observing its system state changes. If a system state change is detected, since no other activity occurs on the dedicated client machine, the server Capture interacted with is classified as malicious. This is the source code for the server.
Homepage:https://projects.honeynet.org/capture-hpc
File Size:207257
Last Modified:Apr 29 20:29:45 2008
MD5 Checksum:34ea2bc70bcba80e269f0064e798c9e8

 ///  File Name: capture-client-2.1.0-300-src.zip
Description:
 Capture is a high interaction client honeypot / honeyclient. A client honeypot/ honeyclient is a security technology that allows one to find malicious servers on a network. Capture identifies malicious servers by interacting with potentially malicious servers using a dedicated virtual machine and observing its system state changes. If a system state change is detected, since no other activity occurs on the dedicated client machine, the server Capture interacted with is classified as malicious. This is the source code for the client.
Homepage:https://projects.honeynet.org/capture-hpc
File Size:451900
Last Modified:Apr 29 20:29:01 2008
MD5 Checksum:24cb2e5a49f09244576dd9d27c798d92

 ///  File Name: prelude-manager-0.9.12.tar.gz
Description:
 Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
Homepage:http://prelude.sourceforge.net
Changes:New connection-timeout option, various fixes.
File Size:716120
Last Modified:Apr 4 19:09:14 2008
MD5 Checksum:60be3113caa01d3389433aa5b43880b6

 ///  File Name: honeyclient-1.0.2.tar.gz
Description:
 A 'honeypot' is designed to detect server-side attacks. In contrast, a 'honeyclient' is designed to detect client-side attacks. Specifically, a honeyclient is a dedicated host that drives specially instrumented applications to access remote servers to see if those servers are behaving in a malicious manner (by compromising the client). Honeyclients can proactively detect exploits against client applications without known signatures. This framework uses a client-server model with SOAP messaging as the primary communication method, and uses the free version of VMware Server as a means of virtualizing the client environment.
Author:MITRE Honeyclient Project
Homepage:http://www.honeyclient.org/trac
File Size:22264167
Last Modified:Mar 12 17:52:30 2008
MD5 Checksum:4bda6d726ea764bca41ebe69e5df0b14

 ///  File Name: prelude-manager-0.9.11.tar.gz
Description:
 Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
Homepage:http://prelude.sourceforge.net
Changes:Multiple enhancements. One bug fixed.
File Size:675250
Last Modified:Feb 5 20:04:37 2008
MD5 Checksum:eb7863fc6ce2212b519e704604740f1a

 ///  File Name: samhain-2.4.3.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1760941
Last Modified:Feb 5 20:03:18 2008
MD5 Checksum:96b16066ea69f95687444b5dcb41f2d7

 ///  File Name: radmind-1.11.1.tar.gz
Description:
 radmind is a suite of Unix command-line tools and a server designed to remotely administer the file systems of multiple Unix machines. Radmind operates as a tripwire which is able to detect changes to any managed filesystem object, e.g. files, directories, links, etc. However, radmind goes further than just integrity checking: once a change is detected, radmind can optionally reverse the change.
Homepage:http://rsug.itd.umich.edu/software/radmind
Changes:Fixed port failover on Mac OS X 10.5 clients. Exclude patterns support escape sequences now. fsdiff manpage: clarification of exclude behavior.
File Size:390810
Last Modified:Jan 14 17:18:51 2008
MD5 Checksum:62419551c6b83873f10b5eb4462cd007

 ///  File Name: radmind-1.11.0.tar.gz
Description:
 radmind is a suite of Unix command-line tools and a server designed to remotely administer the file systems of multiple Unix machines. Radmind operates as a tripwire which is able to detect changes to any managed filesystem object, e.g. files, directories, links, etc. However, radmind goes further than just integrity checking: once a change is detected, radmind can optionally reverse the change.
Homepage:http://rsug.itd.umich.edu/software/radmind
Changes:Support added for exclude patterns. The default server port is now the IANA-registered 6222. Various other changes.
File Size:402880
Last Modified:Dec 18 12:54:16 2007
MD5 Checksum:851d4560bf5d6a5b2e8cf6b9fb21793a

 ///  File Name: samhain-2.4.1.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1757118
Last Modified:Nov 27 23:14:51 2007
MD5 Checksum:21caeeb781f17d94df2cfc23e2404435

 ///  File Name: samhain-2.4.0.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1756687
Last Modified:Nov 2 11:56:52 2007
MD5 Checksum:930d1382a741604c0aa943280cc9484e

 ///  File Name: samhain-2.3.8.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1737900
Last Modified:Oct 5 23:05:59 2007
MD5 Checksum:022ca74d63b1c850ac016dc9af061838

 ///  File Name: prelude-manager-0.9.10.tar.gz
Description:
 Prelude Manager is the main program of the Prelude Hybrid IDS suite. It is able to register local or remote sensors, let the operator configure them remotely, receive alerts, and store alerts in a database or any format supported by reporting plugins, thus providing centralized logging and analysis.
Homepage:http://prelude.sourceforge.net
Changes:Multiple enhancements. Various bug fixes concerning plugin instance un-subscribtion.
File Size:662751
Last Modified:Oct 3 19:21:47 2007
MD5 Checksum:7f164d7ec6ffbfc6ab065165ea39b6fd

 ///  File Name: samhain-2.3.7.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1736992
Last Modified:Sep 18 12:04:30 2007
MD5 Checksum:250e5b4ec9127e4847805af3300a37ec

 ///  File Name: samhain-2.3.6.tar.gz
Description:
 Samhain is a file system integrity checker that can be used as a client/server application for centralized monitoring of networked hosts. Databases and configuration files can be stored on the server. Databases, logs, and config files can be signed for tamper resistance. In addition to forwarding reports to the log server via authenticated TCP/IP connections, several other logging facilities (e-mail, console, and syslog) are available. Tested on Linux, AIX, HP-UX, Unixware, Sun and Solaris.
Author:Rainer Wichmann
Homepage:http://samhain.sourceforge.net
Changes:Various updates.
File Size:1743505
Last Modified:Sep 7 20:09:15 2007
MD5 Checksum:f120378aa3083ef1e7b6c621af09bbf1

 ///  Directory: / sentinel /
Description:
 The Sentinel project is designed to be a portable, accurate implementation of all publicly known promiscuous detection techniques.
Total Files:5
Last Modified:Sep 5 21:21:00 2007
 

 ///  Last 10 Files
  1. :· CESA-2008-009.html
  2. :· cups-dos.txt
  3. :· SSRT080164.txt
  4. :· etopbizlinkback-insecure.txt
  5. :· Vulnerability_Advisory_SSH.txt
  6. :· musicbox238-sql.txt
  7. :· noIPwn3r.c
  8. :· USN-672-1.txt
  9. :· USN-667-1.txt
  10. :· rtm-essential5.pdf
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· CESA-2008-009.html
  2. :· SSRT080164.txt
  3. :· Vulnerability_Advisory_SSH.txt
  4. :· USN-672-1.txt
  5. :· USN-667-1.txt
  6. :· MDVSA-2008-230.txt
  7. :· MDVSA-2008-227-1.txt
  8. :· dsa-1666-1.txt
  9. :· USN-671-1.txt
  10. :· glsa-200811-05.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cups-dos.txt
  2. :· etopbizlinkback-insecure.txt
  3. :· musicbox238-sql.txt
  4. :· noIPwn3r.c
  5. :· videoscript-password.txt
  6. :· chilkat-create.txt
  7. :· jobsiteinet-sql.txt
  8. :· jadugalaxies-sql.txt
  9. :· cnn-xss.txt
  10. :· exodeus-injection.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· tor.uclibc.i686.20081115.iso
  2. :· RFIDIOt-Windows-0.1u.zip
  3. :· RFIDIOt-0.1u.tgz
  4. :· dps-v1.5.tar.gz
  5. :· smbrelay3.zip
  6. :· mptrey.tar.gz
  7. :· dotnetsploitsrc-1.0.zip
  8. :· MultiInjectorV0.3.tar.gz
  9. :· ksplice-0.9.3-src.tar.gz
  10. :· miranda.tar.gz
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· rtm-essential5.pdf
  2. :· unixasm-1.3.0.tar.gz
  3. :· bnd-networks.pdf
  4. :· smallnonulls-exec.txt
  5. :· challenge20081010.txt
  6. :· dotnetrookits.pdf
  7. :· exploration.pdf
  8. :· rev_overlap32.asm
  9. :· bind.cpp
  10. :· secure_input_solutions-webapps.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice