OStatic

SNARE (System iNtrusion Analysis and Reporting Environment) is a series of log collection agents that facilitate centralised analysis of audit log dat...

BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This applica...

LASSIE (Log Aggregation System for Security Investigation & Examination) is an agentless log aggregation and web based analysis tool for Windows s...

The goal of this project is to develop an open source event correlator called SEC (Simple Event Correlator) that could be used for network management,...

What are the packets rejected by your Netfilter based firewall today ? How often this suspicious host try to connect to your box ? What are the most r...

Recursive computing and matching of Context Triggered Piecewise Hashing (aka Fuzzy Hashing). Supports Windows, *nix, BSD, OS X, etc.

XML configurable file system monitoring utility with loggin and task processing support. One instance can be configured to run multiple file system wa...

sudosh is a sudo shell, filter and can be used as a login shell. Sudosh records all keystrokes and output and can play back the session as just like ...

devialog is a behavior/anomaly-based syslog intrusion detection system which detects unknown attacks via anomalies in syslog. It can generate signatur...

Logcheck is software package that is designed to automatically run and check system log files for security violations and unusual activity. Logcheck u...