Section: .. / UNIX / IDS /
| /// File Name: |
nabou-2.0.tar.gz |
Description:
|
nabou is a Perl script which can be used to monitor changes to your system. It provides file integrity checking, and can also watch crontabs, suid files and user accounts for changes. It stores all data in standard dbm databases.
| | Author: | Thomas Linden | | Homepage: | http://www.nabou.org | | Changes: | Fixed some major bugs. | | File Size: | 51477 | | Last Modified: | Feb 19 02:47:35 2002 |
| MD5 Checksum: | 0c60cccfe62bccc9121edfdcd307f2ed |
|
| /// File Name: |
nabou-2.4.tar.gz |
Description:
|
nabou is a Perl script which can be used to monitor changes to your system. It provides file integrity checking, and can also watch crontabs, suid files and user accounts for changes. It stores all data in standard dbm databases.
| | Author: | Thomas Linden | | Homepage: | http://www.nabou.org | | Changes: | Security bug fix. | | File Size: | 76345 | | Last Modified: | Aug 30 23:01:20 2004 |
| MD5 Checksum: | 508fc306ff5816970986f5d8a320483d |
|
| /// File Name: |
nannie-0.9.tar.gz |
Description:
|
Nannie's basic purpose is to watch system files that should not be changed, at least in theory. It monitors them for change in inode, size, etc notifies you if a change occurs.
| | Author: | Cole Tuininga | | File Size: | 3014 | | Last Modified: | Aug 16 20:02:33 1999 |
| MD5 Checksum: | 525a3abec51832be1e49aa54a828023f |
|
| /// File Name: |
nannie-1.0.tar.gz |
Description:
|
Nannie's basic purpose is to watch system files that should not be changed, at least in theory. It monitors them for change in inode, size, etc notifies you if a change occurs. New features: completely rewritten, now logs to syslog instead of sending email, can handle a directory in nannie.cfg (will parse all files in directory), MUCH more error checking.
| | Author: | Cole Tuininga | | File Size: | 3826 | | Last Modified: | Aug 16 20:02:34 1999 |
| MD5 Checksum: | 9c0d3f60742929b511debecaf53fd162 |
|
| /// File Name: |
ncsfck.tar.gz |
Description:
|
NCSfck v1.2.0 - NCSFCK creates a database of important files like "/bin/login". Run as a cronjob for maximum effectiveness. Monitors for backdoor(s) and other trojan(s). web site
| | File Size: | 3171 | | Last Modified: | Aug 16 20:02:32 1999 |
| MD5 Checksum: | ec3abf28c3eee9a81bd0992522d88c41 |
|
| /// File Name: |
neped-libnet.tar.gz |
Description:
|
Network Promiscuous Ethernet Detector, rewriten with Libnet/libpcap so it works on FreeBSD, OpenBSD, and linux, possibly more. neped scans your subnet and detects promiscuous boxes that might be running sniffers or similar applications, using hacked ARPs (non broadcast), only listened by promiscuous ethernets.
| | Author: | CyberPsychotic | | File Size: | 3740 | | Last Modified: | Dec 13 17:37:42 1999 |
| MD5 Checksum: | ee928946f9d5187fe8a5c6224ad7ebf4 |
|
| /// File Name: |
neped.c |
Description:
|
Network Promiscuous Ethernet Detector. neped scans your subnet and detects promiscuous linux boxes that might be running sniffers or similar applications, using hacked ARPs (non broadcast), only listened by promiscuous ethernets. The answer to hacked ARPs expose promiscuity (presume sniffer). Runs on Linux 2.x with GlibC or libc5.
| | Author: | Els Apostols | | File Size: | 5011 | | Last Modified: | Aug 16 20:02:28 1999 |
| MD5 Checksum: | c985154f4743b9b0ebd0c2c4d86fad65 |
|
| /// File Name: |
nepenthes-0.1.7.tar.bz2 |
Description:
|
Nepenthes is a low interaction honeypot like honeyd or mwcollect. Low Interaction Honeypots emulate _known_ vulnerabilities to collect information about potential attacks. Nepenthes is designed to emulate vulnerabilities worms use to spread, and to capture these worms. As there are many possible ways for worms to spread, Nepenthes is modular.
| | Homepage: | http://nepenthes.mwcollect.org/ | | File Size: | 514301 | | Last Modified: | Sep 21 20:20:23 2006 |
| MD5 Checksum: | 7eb9fa1e3f819d5aa3c9ac81a572a724 |
|
| /// File Name: |
netbusd.c |
Description:
|
A UNIX clone of Netbuster for Windows 95. Logs people attempting to exploit netbus.
| | Author: | BigDawg | | File Size: | 11063 | | Last Modified: | Aug 16 20:02:37 1999 |
| MD5 Checksum: | bd0bce4c55db3aeec2f2e0f404f5d2e7 |
|
| /// File Name: |
netl-1.00.tar.gz |
Description:
|
Network logger/sniffer suitable for TCP/IP over Ethernet and loopback. netl is capable of logging everything from pings to telnet, including low level IP like SYNs and RSTs.
| | File Size: | 52427 | | Last Modified: | Aug 16 20:02:25 1999 |
| MD5 Checksum: | d2fedfcdac3ab440b15f764cc8b983e5 |
|
| /// File Name: |
netl-1.01.tar.gz |
Description:
|
netl v1.01 is a network logger/sniffer suitable for TCP/IP over Ethernet and loopback. netl is capable of logging everything from pings to telnet, including low level IP like SYNs and RSTs.
| | Author: | Graham THE Ollis | | File Size: | 54011 | | Last Modified: | Aug 16 20:02:40 1999 |
| MD5 Checksum: | bb85df6ef22cdc4472ce5872a7af88c8 |
|
| /// File Name: |
netl-1.09.tar.gz |
Description:
|
netl v1.09 is a network logger/sniffer suitable for TCP/IP over Ethernet and loopback which provides functionality not found in similar programs. netl is capable of logging everything from pings to telnet, including low level IP like SYNs and RSTs.
| | Author: | Graham Ollis | | Homepage: | http://www.netl.org | | Changes: | Added perl/Tk interface, fixed some bugs. | | File Size: | 275120 | | Last Modified: | Sep 19 20:43:20 2001 |
| MD5 Checksum: | 8bd85e4f9398ec16cdee9dfe9577628b |
|
| /// File Name: |
nettest-0.9.tar.gz |
Description:
|
Nettest is a program which monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down.
| | Author: | Rene Chaddock | | Changes: | Supports multiple connections with separate parameters for each connection, automatically forks into background, and a few rcfile parameters have been changed. | | File Size: | 15303 | | Last Modified: | Aug 16 20:02:39 1999 |
| MD5 Checksum: | f25b0854c8f01e502b83062598d19347 |
|
| /// File Name: |
nettest-1.0.tar.gz |
Description:
|
nettest v1.0 is a program that monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down.
| | Author: | Rene Chaddock | | Changes: | Removed dependencies on external programs. More rcfile options for various configurable settings w/ almost foolproof defaults. More efficient ping code. Minor bug fixes. | | File Size: | 17430 | | Last Modified: | Aug 16 20:02:40 1999 |
| MD5 Checksum: | c0705e221c389233bfd6fcc481c7e492 |
|
| /// File Name: |
nettest-1.1.tar.gz |
Description:
|
nettest 1.1 - Nettest is a program which monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down. It's great for xDSL/Cable/Mission Critical Network Connections.
| | Author: | Rene Chaddock | | Changes: | Fixed bug where pingnumber exibited other (unwanted) behaviour, fixed bug which caused nettest to crash under certain situations, more reliable email-sending code, added retrytime variable which allows nettest to try connection more frequently when connection is actually down. | | File Size: | 18681 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | f233bf84fc53e84eda01124435b36dea |
|
| /// File Name: |
nettest0.8.tar.gz |
Description:
|
nettest v0.8 - Nettest is a program that monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down. 14k.
| | Author: | Rene Chaddock | | File Size: | 13869 | | Last Modified: | Aug 16 20:02:38 1999 |
| MD5 Checksum: | ad45289c085069ac61134c81d7d235cd |
|
| /// File Name: |
nettest0.81.tar.gz |
Description:
|
nettest v0.81 - Nettest is a program that monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down.
| | Author: | Rene Chaddock | | File Size: | 13777 | | Last Modified: | Aug 16 20:02:38 1999 |
| MD5 Checksum: | 235ad0c2475342fffb59015b8388f28c |
|
| /// File Name: |
netwatch0.7e.src.tar.gz |
Description:
|
monitor an ETHERNET and examine activity on the network.
| | File Size: | 188760 | | Last Modified: | Aug 16 20:02:17 1999 |
| MD5 Checksum: | ee57a7ef07be8b956cb7e6bb0383492f |
|
| /// File Name: |
nfr-mod.tar.gz |
Description:
|
L0pht NFR IDS Modules - examples of how to implement IDS functionality with NFR.
| | Author: | L0pht Heavy Industries | | File Size: | 9401 | | Last Modified: | Aug 16 20:02:32 1999 |
| MD5 Checksum: | 6514c6939333a8350738a4aff6d2a4e7 |
|
| /// File Name: |
ng.sh |
Description:
|
ng.sh (netgaurd v1a1) uses tcpdump monitor for common attacks and then activates ipfwadm.
| | Author: | Ben-z | | File Size: | 2700 | | Last Modified: | Aug 16 20:02:45 1999 |
| MD5 Checksum: | 6b861113bde69593d7a9c777c34dde22 |
|
| /// Directory: |
/ nidsbench / |
Description:
|
nidsbench is a network intrusion detection system test suite. nidsbench is being published in the hopes that a more precise testing methodology might be applied to network intrusion detection, which is still a black art at best. This release of nidsbench includes: fragrouter: Implement all IP fragmentation attacks outlined in T. Ptacek and T. Newsham's "Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection" paper of January, 1998. tcpreplay: Replay saved tcpdump(8) dumpfiles at arbitrary speeds. nidsbench is published under a BSD-style license, and has been tested on the following platforms: OpenBSD 2.x, FreeBSD 3.x, BSD/OS 2.x, Linux (2.x kernels), Solaris 2.x (tcpreplay only).
| | Author: | Anzen Computing | | Total Files: | 18 | | Last Modified: | Sep 5 21:20:54 2007 |
|
| /// File Name: |
ninja-0.1.0.tar.bz2 |
Description:
|
Ninja is a privilege escalation detection and prevention system for GNU/Linux hosts. While running, it will monitor process activity on the local host, and keep track of all processes running as root. If a process is spawned with UID or GID zero (root), ninja will log necessary information about this process, and optionally kill the process if it was spawned by an unauthorized user.
| | Author: | Tom Rune Flo | | Homepage: | http://forkbomb.org/ninja/ | | File Size: | 10011 | | Last Modified: | Aug 18 04:02:49 2005 |
| MD5 Checksum: | ff28fafa11525573e22a075fcdbfd7a3 |
|
| /// File Name: |
ninja-0.1.1.tar.bz2 |
Description:
|
Ninja is a privilege escalation detection and prevention system for GNU/Linux hosts. While running, it will monitor process activity on the local host, and keep track of all processes running as root. If a process is spawned with UID or GID zero (root), ninja will log necessary information about this process, and optionally kill the process if it was spawned by an unauthorized user.
| | Author: | Tom Rune Flo | | Homepage: | http://forkbomb.org/ninja/ | | Changes: | Minor updates. | | File Size: | 10591 | | Last Modified: | Aug 19 01:14:13 2005 |
| MD5 Checksum: | deb27909168eb6707fb5a139eef80571 |
|
| /// File Name: |
ninja-0.1.2.tar.bz2 |
Description:
|
Ninja is a privilege escalation detection and prevention system for GNU/Linux hosts. While running, it will monitor process activity on the local host, and keep track of all processes running as root. If a process is spawned with UID or GID zero (root), ninja will log necessary information about this process, and optionally kill the process if it was spawned by an unauthorized user.
| | Author: | Tom Rune Flo | | Homepage: | http://forkbomb.org/ninja/ | | Changes: | Minor updates. | | File Size: | 10796 | | Last Modified: | Sep 1 02:57:33 2005 |
| MD5 Checksum: | 3a94d665869c2c87adf194662353a211 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
