DFIR - Audit Tools
|
This article is being considered for deletion! Reason: This is not an application page and only links to several web-pages. Whats the benefit for an openSUSE User?. Please do not blank, merge, or move this article, or remove this notice. Refer to this article's discussion page and our deletion policy for more information. |
Auditing Applications available for openSUSE
AIDE - a IDS (Intrusion Detection) tool that looks for file changes - replaces tripwire
audit - User Space Tools for 2.6 Kernel Auditing
chkrootkit - looks for signs of rootkits on the system
clamav - looks for malware
lynis - a security and system auditing tool
john the ripper - checks for weak passwords
logsurfer - a tool for monitoring logs and performing actions - eg. generate an email
nikto - a vulnerability scanner for webservers
ophcrack - checks for weak windows passwords
pdfcrack - checks for weak PDF passwords
tripwire - a IDS (intusion detection) tool that looks for changed files - see AIDE
Audit Tool Versions
| Tool | 11.4 | 12.1 | 12.2 | factory | devel repo | comment |
| AIDE | v0.15.1 | v0.15.1 | v0.15.1 | v0.15.1 | security | |
| chkrootkit | v0.49 | v0.49 | v0.49 | v0.49 | security | |
| clamav | v0.97.6 | v0.97.6 | v0.97.6 | v0.97.6 | security | Updated via security patch |
| john the ripper | v1.7.6 | v1.7.8 | v1.7.8 | v1.7.9 | security | |
| logsurfer | N/A | N/A | N/A | N/A | security/v1.8 | Expect v1.9 to be in 12.3 |
| lynis | N/A | v1.2.9 | v1.3.0 | v1.3.0 | security | |
| nikto | N/A | N/A | N/A | N/A | security/v2.1.5 | |
| ophcrack | N/A | N/A | N/A | N/A | security/v3.4.0 | |
| pdfcrack | N/A | N/A | N/A | N/A | security/v0.11 | |
| tripwire | N/A | N/A | N/A | N/A | security/v2.4.2 | AIDE is the openSUSE preferred solution |
As you can see most if not all auditing tools are maintained in the security repo. If you want to have the latest version available, you should consider adding the security repo to your list of repositories.
Communication
Team members
Mailing list
- opensuse-list@lists.opensuse.org - Short description of the mailing list.
Subscribe - Unsubscribe - Help - Archives