Projects / fupids
fupids
fupids (the fuzzy userprofile intrusion detection system) is a user-profile based IDS for the OpenBSD kernel. It modifies certain syscalls in order to detect suspicious behavior. For example, it watches for network devices being set to promiscuous mode, and it watches for the creation of listen() sockets by users. fupids also handles a program profile for your local users, and it can find attackers who overtake existing accounts.
| Tags | Security |
|---|---|
| Licenses | BSD Original BSD Revised |
| Operating Systems | POSIX BSD OpenBSD |
| Implementation | C |
Recent releases
- 07 Dec 2003 05:48
Release Notes: The so_listen() monitoring code was improved.
cdpxe
06 Dec 2003 13:05
Heartbeat
- Popularity Score
- 29.80
- Vitality Score
- 1.00
- Subscriptions
- 2
Voting Score: 0
(0 votes)
