Software:Samhain

From HandWiki
Samhain
Developer(s)Samhain Services
Stable release
4.4.10 / May 14, 2023; 14 months ago (2023-05-14)[1]
Written inC[2]
Operating systemLinux, all POSIX/UNIX Systems, Microsoft Windows
TypeSecurity, Monitoring, HIDS
LicenseGNU General Public License
Websitela-samhna.de/samhain

Samhain is an integrity checker and host intrusion detection system that can be used on single hosts as well as large, UNIX-based networks. It supports central monitoring as well as powerful (and new) stealth features to run undetected in memory, using steganography.

Main features

  • Complete integrity check
    • uses cryptographic checksums of files to detect modifications,
    • can find rogue SUID executables anywhere on a disk, and
  • Centralized monitoring
  • Tamper resistance

See also

References

External links