Sagan is a high performance, real-time log analysis and correlation engine. It uses a multi-threaded architecture to deliver high performance log and event analysis. Its structure and rules are similar to those of the Sourcefire "Snort" IDS/IPS engine. This provides compatibility with rule management software (Oinkmaster, PulledPork, etc.) and allows Sagan to correlate log events with your Snort IDS/IPS system. Sagan can also write to Snort IDS/IPS databases via Unified2/Barnyard2. Sagan is compatible with all Snort "consoles" including Snorby, Sguil, BASE, and the Prelude IDS framework. It supports many different output formats, log normalization (via liblognorm), script execution on event detection, automatic firewall support via "Snortsam", GeoIP detection/alerting, multi-line log support, time sensitive alerting, and much more.
synctool is a cluster administration tool that keeps configuration files synchronized across all nodes in a cluster. Nodes may be part of a logical group or class, in which case they need a particular subset of configuration files. synctool can restart daemons when needed, if their relevant configuration files have been changed. synctool can also be used to do patch management or other system administrative tasks.
GLPI (Gestion Libre de Parc Informatique) is an information resource manager with an administration interface. You can use it to build a database with an inventory for your company (computers, software, printers, etc.). It has functions to make the daily life of the administrators easier, including a job/request tracking system with mail notification and methods to build a database with basic information about your network topology. It provides a precise inventory of all the technical resources (all their characteristics are stored in a database) and management and history of the maintenance actions and the bound procedures. It is dynamic and is directly connected to the users, who can post requests to the technicians.