15 Intrusion Detection Tools For Penetration Testers And Hackers: 1. AFICK It stands for Another File Integrity Checker. Afick is a security tool, very close from the well known tripwire. It allows to monitor the changes on your file systems, and so can detect intrusions. 2. BASE BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system. 3. Bro Bro is a powerful network analysis framework that is much different from the typical IDS you may know. 4. Kismet Kismet is an 802.11 layer2 wireless network detector, sniffer, and intrusion detection system. Kismet will work with any wireless card which supports raw monitoring (rfmon) mode, and (with appropriate hardware) can sniff 802.11b, 802.11a, 802.11g, and 802.11n traffic. Kismet also supports plugins which allow sniffing other media such as DECT. 5. OSSEC OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response. 6. Sguil Sguil (pronounced sgweel) is built by network security analysts for network security analysts. Sguils main component is an intuitive GUI that provides access to realtime events, session data, and raw packet captures. 7. SNARE The Snare range of collection, analysis, reporting and archival tools form a complete event logging and management ecosystem, comprising: 8. Snort Snort is an open source network intrusion prevention and detection system (IDS/IPS) developed by Sourcefire. Combining the benefits of signature, protocol, and anomaly-based inspection, Snort is the most widely deployed IDS/IPS technology worldwide. With millions of downloads and nearly 400,000 registered users, Snort has become the de facto standard for IPS. 9. Tripwire Tripwire delivers unprecedented risk visibility, business context and security business intelligence enabling enterprises to protect sensitive data and assets from breaches, vulnerabilities, and threats, through our trusted portfolio of high priority security controls. Network Monitoring 10. AIM Sniff AIM Sniff is a network sniffer specifically designed to pick up messages transmitted using the AIM or MSN clients and their derivatives. All information can be sent to STDOUT or a MySQL DB. 11. Argus This is a system and network monitoring application, that will monitor anything you direct it to monitor. 12. Nagios Nagios offers complete monitoring and alerting for servers, switches, applications, and services. 13. Nipper Nipper (Network Infrastructure Parser) open source tools assist IT professionals with the configuration, auditing and managing of computer networks and network infrastructure devices. 14. NSAT This is a robust security scanner that has been designed to conduct various scans, penetration testing and other activities. 15. ntop The modern and friendly new nBox web GUI that simplifies ntop, nProbe, n2disk configuration. #hacking
Posted on: Sat, 12 Jul 2014 00:28:52 +0000
Trending Topics
Recently Viewed Topics
© 2015