Packet Storm - Information Security News, Files, Tools, Exploits, Advisories and Whitepapers http://packetstormsecurity.org/ en-us Mon, 28 May 2012 08:02:01 GMT 144400 http://packetstormsecurity.org/ http://www.google-analytics.com/__utm.gif?utmwv=1.3&utmn=1851915967&utmcs=ISO-8859-1&utmsr=31337x31337&utmsc=32-bit&utmul=en-us&utmje=0&utmfl=-&utmcn=1&utmdt=System%20Logging%20Files%u2248%20Packet%20Storm&utmhn=packetstormsecurity.org&utmr=-&utmp=%2Ffiles%2Ftags%2Fsystem_logging%2F&utmac=UA-18885198-1&utmcc=__utma%3D32867617.1851915967.1338192121.1338192121.1338192121.1%3B%2B__utmz%3D32867617.1338192121.1.1.utmccn%3D(direct)%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none) http://packetstormsecurity.org/files/111759/nield-0.23.tar.gz http://packetstormsecurity.org/files/111759/nield-0.23.tar.gz http://packetstormsecurity.org/files/111759/NIELD-Network-Interface-Events-Logging-Daemon-0.23.html Wed, 11 Apr 2012 15:17:25 GMT Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules. http://packetstormsecurity.org/files/109639/nield-0.22.tar.gz http://packetstormsecurity.org/files/109639/nield-0.22.tar.gz http://packetstormsecurity.org/files/109639/NIELD-Network-Interface-Events-Logging-Daemon-0.22.html Fri, 10 Feb 2012 22:31:56 GMT Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules. http://packetstormsecurity.org/files/108179/nield-0.21.tar.gz http://packetstormsecurity.org/files/108179/nield-0.21.tar.gz http://packetstormsecurity.org/files/108179/NIELD-Network-Interface-Events-Logging-Daemon-0.21.html Tue, 27 Dec 2011 17:28:33 GMT Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules. http://packetstormsecurity.org/files/106660/iXKeyLog-0.1.tar.gz http://packetstormsecurity.org/files/106660/iXKeyLog-0.1.tar.gz http://packetstormsecurity.org/files/106660/iXKeyLog-0.1.html Sun, 06 Nov 2011 23:40:52 GMT iXKeylog is an X11 keylogger for Unix that basically uses xlib to interact with the users keyboard. It will listen for certain X11 events and then trigger specific routines to handle these events. http://packetstormsecurity.org/files/104113/nield-0.20.tar.gz http://packetstormsecurity.org/files/104113/nield-0.20.tar.gz http://packetstormsecurity.org/files/104113/NIELD-Network-Interface-Events-Logging-Daemon-0.20.html Wed, 17 Aug 2011 14:31:42 GMT Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache (ARP,NDP), IP address (IPv4,IPv6), route, FIB rules. http://packetstormsecurity.org/files/103043/tenshi-0.13.tar.gz http://packetstormsecurity.org/files/103043/tenshi-0.13.tar.gz http://packetstormsecurity.org/files/103043/Tenshi-Log-Monitoring-Program-0.13.html Thu, 14 Jul 2011 00:33:12 GMT Tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expression and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports. http://packetstormsecurity.org/files/102591/nield-0.11.tar.gz http://packetstormsecurity.org/files/102591/nield-0.11.tar.gz http://packetstormsecurity.org/files/102591/NIELD-Network-Interface-Events-Logging-Daemon-0.11.html Sun, 26 Jun 2011 07:41:52 GMT Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache(ARP,NDP), IP address(IPv4,IPv6), route, FIB rules. http://packetstormsecurity.org/files/97991/nield-0.10.tar.gz http://packetstormsecurity.org/files/97991/nield-0.10.tar.gz http://packetstormsecurity.org/files/97991/NIELD-Network-Interface-Events-Logging-Daemon-0.10.html Sat, 29 Jan 2011 20:07:48 GMT Network Interface Events Logging Daemon is a tool that receives notifications from the kernel through the rtnetlink socket, and generates logs related to link state, neighbor cache(ARP,NDP), IP address(IPv4,IPv6), route, FIB rules. http://packetstormsecurity.org/files/94005/tenshi-0.12.tar.gz http://packetstormsecurity.org/files/94005/tenshi-0.12.tar.gz http://packetstormsecurity.org/files/94005/Tenshi-Log-Monitoring-Program-0.12.html Sat, 18 Sep 2010 19:43:42 GMT Tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expression and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports. http://packetstormsecurity.org/files/87139/nuxkeylogger0.0.1.c http://packetstormsecurity.org/files/87139/nuxkeylogger0.0.1.c http://packetstormsecurity.org/files/87139/Nux-Keylogger-0.0.1.html Fri, 12 Mar 2010 01:07:37 GMT Nux Keylogger monitors keyboard activity on a Linux system. It's possible to hide and daemonize this process and it supports azerty and qwerty keyboard modes. http://packetstormsecurity.org/files/82002/ttyrpld-2.60.tar.bz2 http://packetstormsecurity.org/files/82002/ttyrpld-2.60.tar.bz2 http://packetstormsecurity.org/files/82002/Kernel-Level-TTY-Key-And-Screen-Logger-2.60.html Thu, 15 Oct 2009 00:29:15 GMT ttyrpld is a multi-OS kernel-level tty key and screen logger. Recorded sessions can be followed live or replayed at a later time. Supported platforms are Linux, Solaris, FreeBSD, NetBSD, and OpenBSD. http://packetstormsecurity.org/files/79400/tenshi-0.11.tar.gz http://packetstormsecurity.org/files/79400/tenshi-0.11.tar.gz http://packetstormsecurity.org/files/79400/Tenshi-Log-Monitoring-Program.html Mon, 20 Jul 2009 18:07:21 GMT Tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expression and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports. http://packetstormsecurity.org/files/73705/mochaV1.zip http://packetstormsecurity.org/files/73705/mochaV1.zip http://packetstormsecurity.org/files/73705/Mocha-Network-Activity-Monitor.html Fri, 09 Jan 2009 23:37:40 GMT Mocha is a tool that monitors your network activity and keeps a record of IP / MAC address pairings and firewall logs. It will give a warning when it notices any suspicious activity, like any changes in MAC address or any connection attempt to the firewall. Written in Java. http://packetstormsecurity.org/files/69736/ttyrpld-2.52.tar.bz2 http://packetstormsecurity.org/files/69736/ttyrpld-2.52.tar.bz2 http://packetstormsecurity.org/files/69736/ttyrpld-2.52.tar.bz2.html Mon, 08 Sep 2008 15:28:55 GMT ttyrpld is a kernel-based TTY shell, screen, and key logger for Linux, FreeBSD/PCBSD, and OpenBSD. It has a real-time log analyzer. It supports any TTY type (vc (console), BSD/Unix98 pty (xterm/SSH), serial, ISDN, USB, etc.). http://packetstormsecurity.org/files/66472/ttyrpld-2.51.tar.bz2 http://packetstormsecurity.org/files/66472/ttyrpld-2.51.tar.bz2 http://packetstormsecurity.org/files/66472/ttyrpld-2.51.tar.bz2.html Mon, 19 May 2008 18:52:33 GMT ttyrpld is a kernel-based TTY shell, screen, and key logger for Linux, FreeBSD/PCBSD, and OpenBSD. It has a real-time log analyzer. It supports any TTY type (vc (console), BSD/Unix98 pty (xterm/SSH), serial, ISDN, USB, etc.). http://packetstormsecurity.org/files/64581/tenshi-0.10.tar.gz http://packetstormsecurity.org/files/64581/tenshi-0.10.tar.gz http://packetstormsecurity.org/files/64581/Tenshi-Log-Monitoring-Program.html Fri, 14 Mar 2008 17:29:09 GMT Tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expression and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports. http://packetstormsecurity.org/files/63962/os-sim-0.9.9.tar.gz http://packetstormsecurity.org/files/63962/os-sim-0.9.9.tar.gz http://packetstormsecurity.org/files/63962/os-sim-0.9.9.tar.gz.html Mon, 25 Feb 2008 16:07:04 GMT Os-sim attempts to unify network monitoring, security, correlation, and qualification in one single tool. It combines Snort, Acid, MRTG, NTOP, OpenNMS, nmap, nessus, and rrdtool to provide the user with full control over every aspect of networking or security. Supported platform is Linux. http://packetstormsecurity.org/files/62219/ttyrpld-2.50.tar.bz2 http://packetstormsecurity.org/files/62219/ttyrpld-2.50.tar.bz2 http://packetstormsecurity.org/files/62219/ttyrpld-2.50.tar.bz2.html Wed, 02 Jan 2008 19:47:22 GMT ttyrpld is a kernel-based TTY shell, screen, and key logger for Linux, FreeBSD/PCBSD, and OpenBSD. It has a real-time log analyzer. It supports any TTY type (vc (console), BSD/Unix98 pty (xterm/SSH), serial, ISDN, USB, etc.). http://packetstormsecurity.org/files/61862/nuhe-0.06.tar.gz http://packetstormsecurity.org/files/61862/nuhe-0.06.tar.gz http://packetstormsecurity.org/files/61862/nuhe-0.06.tar.gz.html Tue, 18 Dec 2007 01:07:39 GMT Nuhe is a rule based log monitoring system which is capable of taking action when rules are matched against log activity. By default, Nuhe runs in the background (as a daemon), but it can also be used in the foreground in a log analyzer mode. http://packetstormsecurity.org/files/61370/nuhe-0.05.tar.gz http://packetstormsecurity.org/files/61370/nuhe-0.05.tar.gz http://packetstormsecurity.org/files/61370/nuhe-0.05.tar.gz.html Fri, 30 Nov 2007 05:43:20 GMT Nuhe is a rule based log monitoring system which is capable of taking action when rules are matched against log activity. By default, Nuhe runs in the background (as a daemon), but it can also be used in the foreground in a log analyzer mode. http://packetstormsecurity.org/files/60472/honeytrap-1.0.0.tar.gz http://packetstormsecurity.org/files/60472/honeytrap-1.0.0.tar.gz http://packetstormsecurity.org/files/60472/honeytrap-1.0.0.tar.gz.html Mon, 29 Oct 2007 15:20:36 GMT Honeytrap is a network security tool written to observe attacks against TCP services. As a low-interactive honeypot, it collects information regarding known or unknown network-based attacks and thus can provide early-warning information. The daemon monitors the network stream for incoming connections and dynamically starts server processes if it detects a request to an unbound port. Honeytrap can also be set up as a meta honeypot that forwards several attacks to other systems or, in mirror mode, redirects a connection back to the initiator. Several plugins are available for automated attack analysis. http://packetstormsecurity.org/files/59843/tenshi-0.9.1.tar.gz http://packetstormsecurity.org/files/59843/tenshi-0.9.1.tar.gz http://packetstormsecurity.org/files/59843/Tenshi-Log-Monitoring-Program.html Sat, 06 Oct 2007 02:45:40 GMT Tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expression and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports. http://packetstormsecurity.org/files/59417/tenshi-0.9.tar.gz http://packetstormsecurity.org/files/59417/tenshi-0.9.tar.gz http://packetstormsecurity.org/files/59417/Tenshi-Log-Monitoring-Program.html Wed, 19 Sep 2007 16:04:57 GMT Tenshi is a log monitoring program, designed to watch a log file for lines matching user defined regular expression and report on the matches. The regular expressions are assigned to queues which have an alert interval and a list of mail recipients. Queues can be set to send a notification as soon as there is a log line assigned to it, or to send periodic reports. http://packetstormsecurity.org/files/59408/ttyrpld-2.19.tar.bz2 http://packetstormsecurity.org/files/59408/ttyrpld-2.19.tar.bz2 http://packetstormsecurity.org/files/59408/ttyrpld-2.19.tar.bz2.html Wed, 19 Sep 2007 02:41:18 GMT ttyrpld is a kernel-based TTY shell, screen, and key logger for Linux, FreeBSD/PCBSD, and OpenBSD. It has a real-time log analyzer. It supports any TTY type (vc (console), BSD/Unix98 pty (xterm/SSH), serial, ISDN, USB, etc.). http://packetstormsecurity.org/files/58917/nuhe-0.04.tar.gz http://packetstormsecurity.org/files/58917/nuhe-0.04.tar.gz http://packetstormsecurity.org/files/58917/nuhe-0.04.tar.gz.html Wed, 29 Aug 2007 04:31:10 GMT Nuhe is a rule based log monitoring system which is capable of taking action when rules are matched against log activity. By default, Nuhe runs in the background (as a daemon), but it can also be used in the foreground in a log analyzer mode.