Links:
afick afick is another file integrity checker, designed to be fast and fully portable between Unix and Windows platforms. Read more Aide Advanced Intrusion Detection Environment is a free replacement for Tripwire(tm). autocrc autocrc uses 32-bit CRC-sums to verify the integrity of files. The CRC-sums are parsed both from filenames and from sfv files. autocrc can perform CRC-checks recursively. After it's done, it prints summary of the result. BFBTester BFBTester is for doing quick, proactive, security checks of binary programs. BFBTester will perform checks of single and multiple argument command line overflows and environment variable overflows. detectChanges detectChanges is a file integrity checking and management tool. It is easier to use than other applications exist in this product space because it is a script that does not require package installation or compilation. While detectChanges does not provide as much functionality, it is sufficient for most users and provides a simple command line interface. Fast File Validator Fast File Validator (FFV) is a program for verifying files against a checksum file and for creating such checksum files. fcatalog fcatalog is for identifying the origins of files. Though its operation is similar to the operation of file-checksum-checking security utilities (like tripwire), its purpose and methodology is different. File Integrity & Control designed to aid system administrators that need to monitor and maintain multiple Tripwire installations Impost Impost is a network security auditing tool designed to analyze the forensics behind compromised and/or vulnerable daemons. There's two different kinds of operating modes used by Impost; It can either act as a honey pot and take orders from a Perl script controlling how it responds and communicates with connecting clients; or it can operate as a packet sniffer and monitor incoming data to specified destination port supplied by the command-line arguments. Integcheck Integcheck is a system integrity checker. It checks the integrity of exposed systems by getting a list of MD5 hashes of any important file via SSH, keeps a master list of these on a relatively secure system, and compares this list daily with the current list. As long as the system considered safe is not compromised, it should inform administrators of any changes on the exposed systems. integrit integrit is a more simple alternative to file integrity verification programs like tripwire and aide. It helps you determine whether an intruder has modified a computer system. Linux Security Auditing Tool Linux Security Auditing Tool is a post install security auditing tool. It is modular in design, so new features can be added quickly. It checks inetd entries and scans for unneeded RPM packages. md5crack0r The md5crack0r is a toolkit consisting of several small programs being written for one purpose: reversing MD5 hashes. md5aggr is a command line tool that queries online databases. It supports many databases, and can easily be extended. md5mon md5mon is a very basic security auditing script. It checks that certain system files have not been modified and it uses "md5sum" to compute checksums of files, reporting any differences from previously recorded checksums. nabou nabou is a perl script which you can use to check file integrity. Osiris Scripts Osiris is a Host Integrity Monitoring System that periodically monitors one or more hosts for change. It maintains detailed logs of changes to the file system, user and group lists, resident kernel modules, and more. Osiris can be configured to email these logs to the administrator. OutGuess OutGuess is a universal steganographic tool that allows the insertion of hidden information into the redundant bits of data sources. The nature of the data source is irrelevant to the core of OutGuess. The program relies on data specific handlers that will extract redundant bits and write them back after modification. In this version the PNM and JPEG image formats are supported. PE Scanner PE Scanner allows you to examine files or directories containg Portable Executable (PE) files and report on their file signature. It's meant to be a forensics tool. QTSfv QTSfv is a tool to create and verify filesets in CRC32, MD5, and SHA1. It can parse and create .sfv and .md5sum files. readhash readhash is a tool that can help you to compute different digests, such as CRC32, MD4, MD5, SHA1, SHA-256, SHA-384, SHA-512, ED2K, and Tiger. Riley Riley is a file integrity checker written in Perl. samhain Samhain is a multiplatform, open source solution for centralized file integrity checking / host-based intrusion detection on POSIX systems (Unix, Linux, Cygwin/Windows). It has been designed to monitor multiple hosts with potentially different operating systems from a central location, although it can also be used as standalone application on a single host. Secheck Secheck is a script designed for linux users to keep up with some security issues on their system. secheck runs nightly and checks on such things as: SUID files, passwordless accounts, open ports, users on the system with root access, who has su'd to root, etc. Sentinel Sentinel is a fast file/drive scanning utility similar to the Tripwire and Viper.pl utilities available. It uses a database similar to Tripwire, but uses a RIPEMD-160bit MAC checksumming algorithm (no patents) which is more secure than the patented MD5 128 bit checksum. ssum ssum generates md5 sums,check md5 sums, rip, and inject portions of files for file integrity. wxChecksums wxChecksums calculates and verifies checksums. wxChecksums is able to read and write files in SFV and MD5 format. wxChecksums is available for Windows 9x/ME/2000/XP and Linux.
