Section: .. / UNIX / loggers /
| /// File Name: |
surrogate-syslog.tar.Z |
Description:
|
Does logging to a file, useful if you have no syslog.
| | File Size: | 6216 | | Last Modified: | Aug 16 20:05:15 1999 |
| MD5 Checksum: | 899cdc34fff29c828608aadeb3e02f9e |
|
| /// File Name: |
udplstn.1.1.tar.gz |
Description:
|
UDP Listen v1.1 - Sample daemon, which hooks on the UDP ports, listens and records all incoming packets.
| | File Size: | 6210 | | Last Modified: | Aug 16 20:05:17 1999 |
| MD5 Checksum: | a100330eb8e08e9d3925c80965ff6de5 |
|
| /// File Name: |
psting-1.0.tar.gz |
Description:
|
Ping Sting 1.0 - pingsting is an application that monitors networks for ICMP Echo Requests and attempts to determine what application generated the ICMP packets. The method and weaknesses of this method are described at the end of this document.
| | Author: | Anthony Osborne | | Homepage: | http://208.176.87.92/psting/ | | File Size: | 5900 | | Last Modified: | Nov 18 14:51:19 1999 |
| MD5 Checksum: | a8b3ea4afcf826a60bebcbca30d84ec3 |
|
| /// File Name: |
sanitize-1.0.tar.Z |
Description:
|
A collection of shell scripts for "sanitizing" tcpdump trace files to address privacy and security concerns.
| | Author: | Lawrence Berkeley National Laboratory | | File Size: | 5576 | | Last Modified: | Aug 16 20:05:15 1999 |
| MD5 Checksum: | 89c0bb63178c458d797c85aa3fa62f1e |
|
| /// File Name: |
proboscis.c |
Description:
|
Proof of concept event interface keystroke logger that records everything coming through /dev/input/event*.
| | Author: | Eddie Bell | | File Size: | 5169 | | Last Modified: | Aug 28 15:49:55 2005 |
| MD5 Checksum: | bc68b7a480acd4bf0030d3c228cedfa5 |
|
| /// File Name: |
tcplogd.c |
Description:
|
tcplogd.c v2.1 - Modified version of tcplog able to log any tcp portscan attack (ala nmap2), detects FTPbounce attacks, FIN packet based scan (like Uriel's and Xmas tree scan) as well as Null flag scan (see nmap 2.01 documentation for details).
| | Author: | phroid | | File Size: | 5015 | | Last Modified: | Aug 16 20:05:17 1999 |
| MD5 Checksum: | e7097ead85f618040d3f3553e05e115d |
|
| /// File Name: |
ippl-iplog-protolog.html |
Description:
|
ippl -vs- iplog -vs- protolog comparison - Very informative blow-by-blow comparison of three popular traffic logging programs: ippl, iplog, and protolog.
| | Author: | pho | | File Size: | 4653 | | Last Modified: | Aug 16 20:05:14 1999 |
| MD5 Checksum: | b70af29b4f9c7dfc0dd739f5620fb3fd |
|
| /// File Name: |
hhp-PMS.tar.gz |
Description:
|
pms.pl is watches for certain running processes and alerts you via /dev/speech when they start.
| | Author: | Loophole | | File Size: | 4583 | | Last Modified: | Jun 26 02:59:03 2000 |
| MD5 Checksum: | 40b4b8bc523bcebaa66711f7ff038a38 |
|
| /// File Name: |
snaresquid-1.2.tar.gz |
Description:
|
Snare for Squid provides a remote distribution facility for Squid proxy server logs, and is known to run on most Unix variations, including Linux, Solaris, AIX, Tru64, and Irix. Snare for Squid can be used to send data to either a remote or local SYSLOG server, or the Snare Server for centralized collection, analysis, and archival.
| | Homepage: | http://www.intersectalliance.com/projects/SnareSquid/index.html | | File Size: | 4242 | | Last Modified: | Jul 19 11:24:54 2005 |
| MD5 Checksum: | d757c89e24ed354d7633893b8d607f93 |
|
| /// File Name: |
hhp-SSH_TROSNIFF.tgz |
Description:
|
hhp-trosniff is a complete package of patches to modify ssh, ssh2, sshd, ssh2d, and opensshd to extract and log the Incoming/Target HostName/UserName/Password. Intended to log brute force attacks and deleted users who try to gain access.
| | Author: | Loophole | | File Size: | 4064 | | Last Modified: | Jun 21 19:31:24 2000 |
| MD5 Checksum: | 8bc929c223f30bbea750ab01ca5fdd70 |
|
| /// File Name: |
snaretext-1.1.tar.gz |
Description:
|
Snare for Apache provides a remote distribution facility for Apache Web server logs. It is known to run on most Unix variations, including Linux, Solaris, AIX, Tru64, and Irix. Snare for Apache can be used to send data to either a remote or local SYSLOG server, or the Snare Server for centralized collection, analysis, and archival.
| | Homepage: | http://www.intersectalliance.com/projects/SnareApache/index.html | | File Size: | 3962 | | Last Modified: | Jul 19 11:23:24 2005 |
| MD5 Checksum: | 8c1cb82d5696977ffde02e978004e149 |
|
| /// File Name: |
netguard-0.0.3.tar.gz |
Description:
|
NetGuard v0.0.3 - The NetGuard package consists of two small programs (TCPguard and UDPguard) that detect TCP and UDP connections/packets. This latest release uses route's libnet, is able to kill connections, uses bitmasks to get flags, detects Queso connection attempts, has better SYN-flood detection code, more.
| | Author: | Monk | | File Size: | 3937 | | Last Modified: | Aug 16 20:05:15 1999 |
| MD5 Checksum: | 79ba999ff74a12bd8a59db4a8bd9c5fe |
|
| /// File Name: |
exec.c |
Description:
|
exec.c 1.0.4 is a kernel module which logs all the commands executed on the system. Extremely powerful stealth logging made easy!
| | Author: | Pat Szuta | | Changes: | This release fixes a memory allocation problem. Please update to the current version if you use the module. This module should work on 2.2.* kernels. | | File Size: | 3893 | | Last Modified: | Dec 6 21:58:42 1999 |
| MD5 Checksum: | 1cebecd309b7c1a3b25be810e9cccde4 |
|
| /// File Name: |
loginject.c |
Description:
|
loginject is a Syslog message injector.
| | Author: | Tal0n | | File Size: | 3880 | | Last Modified: | Aug 26 16:01:17 2004 |
| MD5 Checksum: | 5aab05e057871400af754c573f848829 |
|
| /// File Name: |
rr.c.gz |
Description:
|
RotoRouter v1.9b - RotoRouter (pronounced row-toe row-ter) allows you log incoming traceroutes, and optionally generate false responses, allowing you to control what appears on someones traceroute. It can then forge replies. This beta version uses libpcap; the spoofed replies are broke but logging does seem to work well on non-linux systems.
| | Author: | Humble | | File Size: | 3628 | | Last Modified: | Aug 16 20:05:13 1999 |
| MD5 Checksum: | 29ee217839fbf1b4d9141107e7fe5662 |
|
| /// File Name: |
multisort-1.1.tar.gz |
Description:
|
multisort can merge multiple httpd logs from a single website distributed on multiple hosts (through round-robin DNS, for example) into a single date-ordered log. It's useful for preprocessing logs before feeding them to analyzers. It's written in C and is quite fast.
| | Author: | Zach Beane | | File Size: | 3520 | | Last Modified: | Oct 28 16:11:31 1999 |
| MD5 Checksum: | c47f7622773022119e1ea21d2b211bd3 |
|
| /// File Name: |
fmond.tgz |
Description:
|
Fmond is a daemon coded for FreeBSD that will monitored targets which may get modified, written, deleted, or renamed.
| | Author: | Vlad Galu | | File Size: | 3395 | | Last Modified: | Aug 25 22:25:34 2003 |
| MD5 Checksum: | 5ba3e6c33d8194f52fe573c0916afc4a |
|
| /// File Name: |
udplog-0.1.tgz |
Description:
|
UDP packet logger.
| | File Size: | 3370 | | Last Modified: | Aug 16 20:05:17 1999 |
| MD5 Checksum: | 7ffbe4464801ba2e2c2b3d1916ed9791 |
|
| /// File Name: |
smurflog-1.1.tar.gz |
Description:
|
Smurf Logger 1.1, new release with bugfixes. Logs smurf attacks and the broadcast address being used.
| | File Size: | 3269 | | Last Modified: | Aug 16 20:05:15 1999 |
| MD5 Checksum: | 788aa1e05feac3f514cbbbda413857a0 |
|
| /// File Name: |
Xsyslog |
Description:
|
Xsyslog Graphical system log interface is a visual interface to the syslog file that utilizes TCL/TK.
| | Author: | Patrick Lambert | | File Size: | 3246 | | Last Modified: | Aug 16 20:05:12 1999 |
| MD5 Checksum: | 3af215daa5deb510996ba1dbd2101d95 |
|
| /// File Name: |
smurflog-1.0.tar.gz |
Description:
|
See below.
| | File Size: | 2869 | | Last Modified: | Aug 16 20:05:15 1999 |
| MD5 Checksum: | 2ead417fd3468fffa9e215cf636780e5 |
|
| /// File Name: |
tcplog.c |
Description:
|
Unavailable.
| | File Size: | 2484 | | Last Modified: | Aug 16 20:05:17 1999 |
| MD5 Checksum: | 7eb2a1402325c0f111d342c6460ec590 |
|
| /// File Name: |
Colorlogs-1_1.tar.gz |
Description:
|
Colorlogs color codes your logfiles for simpler reading. Sit at a distance and watch for specified colors in the logfile output to alert you of unusual activity.
| | Author: | J-Dog | | Changes: | Many more display options, improved config file and handling of special characters. | | File Size: | 2145 | | Last Modified: | Aug 16 20:05:12 1999 |
| MD5 Checksum: | 6ec091ee0762f909e1ba957d463527c0 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
