Directory

File Integrity Checkers

File Integrity Checkers
When a system is compromised an attacker will often alter certain key files to provide continued access and prevent detection. By applying a message digest (cryptographic hash) to key files and then checking the files periodically to ensure the hash hasn’t altered a degree of assurance is maintained. On detecting a change an alert will be triggered. Furthermore, following an attack the same files can have their integrity checked to assess the extent of the compromise.

Listings
There are 11 Listings in this Category.Add your listing here

AIDE (Advanced Intrusion Detection Environment)

Visit the Product Site

It creates a database from the regular expression rules that it finds from the config file. Once this database is initialized it can be used to verify the integrity of the files. It has several message digest algorithms (md5,sha1,rmd160,tiger,haval,etc.) ...

VendorSolaris 2.5.1,2.6,7
Pricing ModelFREEWARE
Modified2000-09-26

chkrootkit

Visit the Product Site

chkrootkit is a tool to locally check for signs of a rootkit. [talisker] I used to list all the files it checked as well as all the rootkits it detected. Nelson has taken this product to become a huge project with too many features to list please check ou ...

VendorNelson Murilo
Pricing ModelFREEWARE
Modified2003-12-01

FCheck

Visit the Product Site

FCheck is an open source PERL script providing intrusion detection and policy enforcement of Windows 95/98/NT/3.x and Unix server administration through the use of comparative system snapshots. FCheck can provide notification of any differences found thro ...

VendorAIX
Pricing ModelFreeware
Modified2001-07-27

integrit

Visit the Product Site

integrit is an alternative to file integrity verification programs like tripwire and aide. It helps you determine whether an intruder has modified a computer system. Without a system like integrit, a sysadmin can't know whether the tools he/she uses to in ...

Vendor*nix
Pricing ModelFreeware
Modified2001-09-09

Data Sentinel

Visit the Product Site

A baseline snapshot of the system is taken, and, specific to your needs, you schedule times to take further snapshots to compare against this baseline. Any files and registry entries you choose can be included, and you can run the integrity check manually ...

VendorIonx
Pricing ModelCommercial
Modified2004-01-21

GFI LANguard System Integrity Monitor

Visit the Product Site

GFI LANguard System Integrity Monitor (formerly GFI LANguard File Integrity Checker) is a utility that provides intrusion detection by checking whether files have been changed, added or deleted on a Windows 2000/NT system. If this happens it will alert th ...

VendorGFI Software Ltd
Pricing ModelFreeware
Modified2008-08-13

Osiris

Visit the Product Site

Osiris is a file integrity management system that periodically monitors one or more hosts for change. It maintains detailed logs of changes to the file system, user and group lists, resident kernel modules, and more. Osiris can be configured to email thes ...

Pricing ModelFreeware
Modified2004-01-20

samhain

Visit the Product Site

samhain is an open source file integrity and host-based intrusion detection system for Linux and Unix. It can run as a daemon process, and and thus can remember file changes - contrary to a tool that runs from cron, if a file is modified you will get only ...

Vendorsamhain labs
Pricing ModelFreeware
Modified2003-04-16

Sanctuary formerly SecureEXE

Visit the Product Site

Sanctuary preserves the security of your environment while dramatically minimizing the inherent risks of downloading or installing new applications. Here's how it works: When a user attempts to launch a non-centrally authorized executable, a dialogue box ...

VendorSecureWave SA
Pricing ModelCOMMERCIAL
Modified2004-12-17

Tripwire

Visit the Product Site

Tripwire software establishes a "digital inventory" of known good files and their attributes and uses it as a baseline for monitoring changes. Discovering State Change User-scheduled integrity checks monitor files and their attributes, comparing them agai ...

VendorTripwire, Inc
Pricing ModelCOMMERCIAL
Modified2004-01-20

Veracity

Visit the Product Site

Veracity ? provides comprehensive data integrity by ensuring that critical data and system software have not been corrupted or altered in any way by viruses, intruders or disk corruption. Veracity allows the establishment of a secure network configuration ...

VendorRocksoft
Pricing ModelCOMMERCIAL
Modified2006-06-05