pyHIDS is a host-based intrusion detection system. It uses an RSA signature to check the integrity of its database. Alerts are written in the logs of the system, and can be sent via email to a list of users or on IRC channels (through the irker IRC client). You can define rules to specify files to be checked periodically.
|Tags||Security HIDS intrusion System Integrity|
|Operating Systems||GNU/Linux Windows|
Release Notes: Notifications are now summarized in a single email. Handling of binary files was improved.
Release Notes: This release offers the ability to send alerts on IRC channels through the irker IRC client (which should be running as a daemon). Of course, it is still possible to send notifications by email and with the syslog file. There is now only one configuration file for all the settings.
Release Notes: It is now possible to check the output of commands ("iptables -L", for example) if you want to check the status of your firewall configuration.
Release Notes: An email message is now sent to the list of administrators after each system check, even when the integrity is maintained. Installation and configuration are now easier. Other minor improvements have been made.