Open source tripwire
Open source tripwire | |
---|---|
Basic data
|
|
developer | Tripwire |
Current version |
2.4.3.7 ( March 31, 2018 ) |
operating system | Unix-like |
programming language | C ++ |
License | GPL ( Free Software ) |
github.com/Tripwire/tripwire-open-source |
Open source Tripwire is free software for POSIX- compatible ( Unix ) operating systems, which ensures security and data integrity on various systems by monitoring and displaying certain data changes .
Open source Tripwire is based on program code made available by Tripwire, Inc. in 2000 and has since been distributed as free software under the terms of the GNU General Public License (GPL).
Other open source projects offer similar functions, such as OSSEC , AIDE and Samhain .
Working method
Open source Tripwire works as a host-based intrusion detection system and monitors objects in the file system for changes.
During the initial start-up, Open Source Tripwire scans the file system according to the administrator's specifications and saves information for each scanned file in a database. At later times, the files are scanned again and compared with the previous results in the database. Changes will be announced to the user. Open source Tripwire uses checksums to detect file changes without having to make a full copy of the file.
Open source Tripwire primarily detects attacks after they have happened, but can also be used for other purposes, such as integrity checks , change management and policy compliance.
Web links
Individual evidence
- ↑ Release 2.4.3.7 . March 31, 2018 (accessed March 31, 2018).