Tripwire Inc. Commercial version of the original Unix file integrity scanner. Calculates and stores signatures of file permissions, ownership and contents. Scans the same files later, detecting changes. http://www.tripwire.com/ Tripwire.com~Site InfoWhoisTrace RouteRBL Check
Tripwire Open Source Open source version of the original Unix file integrity scanner. Calculates and stores signatures of file permissions, ownership and contents. Scans the same files later, detecting changes. This open source version is targeted at Linux systems. http://www.tripwire.org Tripwire.org~Site InfoWhoisTrace RouteRBL Check
The Coroner's Toolkit (TCT) The Coroner's Toolkit (TCT) provides post-break-in data collection that could be useful in determining what happened. Less polished that the authors (Dan Farmer and Wietse Venema) usual work, the toolkit offers a patch-work of tools that help exhum http://www.porcupine.org/forensics/tct.html Porcupine.org~Site InfoWhoisTrace RouteRBL Check
lsof lsof is a tool for examining I/O channels open on your Unix system. These can include files, FIFOs and network sockets. This information can be extremely useful for security and a variety of other purposes. Works on most Unix-like systems. http://freshmeat.net/projects/lsof Freshmeat.net~Site InfoWhoisTrace RouteRBL Check
Symark Software Execute root-level commands and shell scripts without having to actually login as root. Control which users can log in and under which circumstances. http://www.symark.com/products.htm Symark.com~Site InfoWhoisTrace RouteRBL Check