checkps 1.3.2.1

Company: devialog

Date Added: July 29, 2013 | Visits: 427

Report Broken Link
Printer Friendly Version

Product Homepage
Download (43 downloads)

Devialog is a behavior/anomaly-based syslog intrusion detection system which detectsattacks via anomalies in syslog. Present log-based IDS: Nearly all present log-based intrusion detection systems operate using a pre-defined known signature base, usually painstakingly created by hand. They can work well if the creator knows exactly all error and informational messages the software on a system(s) will write to syslog. Most overworked administrators wish there was an easier way to handle system logfiles in a sane, time-saving fashion. Present log-based intrusion detection systems have difficulty in detecting new attacks. How devialog Differs: devialog makes syslog parsing far less of a chore than it previously has been. It is functionally the inverse of standard log monitoring software. devialog, by default, reports on what is not know in its signature base, i.e. anomalous. This type of intrusion detection system is considered behavior-based, or anomaly detection. Reporting can be in the form of an email for each anomalous log, or an email for all the logs sent within a pre-defined time window. devialog can also execute commands, or simply write all anomalies to a file for periodical review. Signature Creation: For log-based anomaly detection to operate effectively, one must create an extremely large signature base. With an included utility, devialogsig, the signatures are created automatically. Future signature additions are ver simple, like a copy from the alert email.

Requirements: No special requirements

Platforms: *nix, Linux

Keyword: Anomalies, Behavior Anomaly Based, Detection, Detectsattacks, Devialog, Intrusion, Syslog, System

Users rating: 0/10

License: Freeware

Size: 20.48 KB

USER REVIEWS

More Reviews or Write Review

CHECKPS RELATED

Utilities - check-ps 0.8.5 Devialog is a behavior/anomaly-based syslog intrusion detection system which detectsattacks via anomalies in syslog. Present log-based IDS: Nearly all present log-based intrusion detection systems operate using a pre-defined known signature...	22.53 KB
Security Tools - Hogwash Light BR 1.1 Hogwash Light BR is an Intrusion Prevention System that can filter packets directly in the layer 2 of the OSI model (so the machine doesnt need even an IP address). Detection of malicious/anomalous traffic is done by rules based in signatures,...	194.56 KB
Programming - KOJAK 2.2b2 KOJAK (Kit for Objective Judgement and Knowledge-based Detection of Performance Bottlenecks) is a set of generic and interoperable tool components designed for the performance analysis of parallel applications. Their functionality addresses the...	2.4 MB
Security Tools - System Safety Monitor Free Edition 2.0.8.578 System Safety Monitor (SSM) is a Host Based Intrusion Prevention System which will protect your system from all known and unknown malware, rootkits and "zero-day" attacks. SSM proactively keeps track of all running programs' behavior and blocks...	3.21 KB
Networking Tools - Pads 1.2 Pads (Passive Asset Detection System) is a signature-based detection engine used to passively detect network assets. Asset management is an important factor in information security. A good security administrator should keep track of all devices...	235.52 KB
Audio Tools - GstPUID 0.1 GstPUID is a GStreamer element that allows for fingerprint-based detection of music files using MusicDNS/MusicIP and Musicbrainz. It allows for detection of the tracks artist and title based on the audio data only. It works with any file format...	317.44 KB
Security Tools - Hogwash Light BR for Linux 0.2.4 Hogwash Light BR is an Intrusion Prevention System that can filter packets directly in the layer 2 of the OSI model (so the machine doesn't need even an IP address). Detection of malicious/anomalous traffic is done by rules based in...	20.48 KB
Security Tools - IPS HLBR 1.1 IPS HLBR program is a fork of the Hogwash project. It is an IPS (Intrusion Prevention System) that can filter packets directly in layer 2 of the OSI model (so the machine doesnt need an IP address). Detection of malicious/anomalous traffic is...	194.56 KB
Network & Internet - gtd-php 0.7 gtd-php is a Web-based implementation of the personal productivity system Getting Things Done..	27.65 KB
File Synchronizers - palmfs 0.1 palmfs is a PalmOS filesystem access software for Linux, based on FUSE. It consists of two parts, a client and a server. The client is a FUSE-based application running on the Linux system. The server part is a PalmOS application that actually...	12.29 KB

NEW DOWNLOADS IN LINUX SOFTWARE, SECURITY TOOLS

Linux Software - EasyEDA PCB Designer for Linux 2.0.0 EasyEDA, a great web based EDA(Electronics Design Automation) tool, online PCB tool, online PCB software for electronics engineers, educators, students, makers and enthusiasts. Theres no need to install any software. Just open EasyEDA in any...	34.4 MB
Linux Software - wpCache® WordPress HTTP Cache 1.9 wpCacheÂ® is a high-performance, distributed object, caching system application, generic in nature, but intended for use in speeding up dynamic web applications, by decreasing database load time. wpCacheÂ® decreases dramatically the page...	3.51 MB
Linux Software - Polling Autodialer Software 3.4 ICTBroadcast Auto Dialer software has a survey campaign for telephone surveys and polls. This auto dialer software automatically dials a list of numbers and asks them a set of questions that they can respond to, by using their telephone keypad....	488 B
Linux Software - Total Video Converter Mac Free 3.5.5 Total Video Converter Mac Free developed by EffectMatrix Ltd is the official legal version of Total Video Converter which was a globally recognized brand since 2006. Total Video Converter Mac Free is a free but powerful all-in-one video...	17.7 MB
Linux Software - Skeith mod_log_sql Analyzer 2.10beta2 Skeith is a php based front end for analyzing logs for Apache using mod_log_sql.	47.5 KB
Security Tools - Password Generator 2.0 Password Generator is a free, powerful password generator, thanks to which we can create very strong passwords. The program allows you to generate passwords that are easy to read, remember or write, as well as completely unusual for human language...	20.36 MB
Security Tools - Free AntiSpyware 7.2.5 As powerful and professional anti-spyware software, Free AntiSpyware has ability to detect & stop the latest and most malicious programs that are doing harm to your computer and breaking your privacy. This free spyware remover software helps...	128.08 MB
Security Tools - paraproxy 1.1 paraproxy is a supplement library for paramiko which adds support for SSH2 proxy commands. #md5=0c7041e8d2d7e49b09df526bba3efb28 #md5=1fbb4f888f40a01439ff27458c6210eb #md5=493c0f426e376427c30f3f39ebc8dac1	20.48 KB
Security Tools - pam_smxs 1.6 pam_smxs is a PAM module that authenticates a user using challenge-response. All tokens that support ANSI X9.9 are currently supported and it provides full support for CryptoCard RB1 tokens.	522.24 KB
Security Tools - DoudouLinux 2011-11 DoudouLinux [1] is a system specially designed for children to make computer use as easy and pleasant as possible for them (and for their parents too! [2]). DoudouLinux provides tens of applications that suit children from 2 to 12 years and tries...	964.17 MB

Windows Software	BeOS Software
Macintosh Software	Linux Software
PDA Software	OS/2 Software
Mobile Software	Scripts