Sponsored by: █ Sparkhost - Hosting Without Compromises! █ Hybrid Performance Web Hosting █ Spark Host Stream Hosting █ Hybrid IRC & IRCd Server Shell Accounts
Host-Based Ids
Started by
Caramel2
, Jun 01 2012 06:56 AM
1 reply to this topic
#1
Caramel2
-
- Members
-
- 3 posts
Private
Posted 01 June 2012 - 06:56 AM
Hi,
I am looking for a good Host-based IDS solution for Linux (one that inspects system calls, OS files, CPU usage etc.,,, network traffic inspection is not relevant for this case).
Since I am using it for research purposes I need it to give as an output not only alerts, but also some quantitative measure of the risk to the system (such as anomaly rate) .
Does anyone have an idea of an existing IDS (Maybe OSSEC will do the job)?
If not - do you have an idea how to build such an HIDS? (if you know one for windows that would also be good...)
Thanks
#2
winsoc
-
- Members
-
- 29 posts
Private First Class
Posted 22 July 2012 - 02:10 PM
The open source version of Tripwire is your friend here.
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users
