Projects / integrit

integrit

integrit is an alternative to file integrity verification programs like tripwire and aide. It helps you determine whether an intruder has modified a computer system. integrit's major advantages are a small memory footprint and simplicity. It works by creating a database that is a snapshot of the most essential parts of your computer system. You put the database somewhere safe, and you can then use it to make sure that no one has made any illicit modifications to the computer system. In the case of a break in, you know exactly which files have been modified, added, or removed.

Tags
Licenses
Operating Systems
Implementation

Recent releases

  •  02 Jun 2007 22:32

    Release Notes: This version fixes exit status codes when just "missing files" are found.

    •  04 Aug 2006 14:12

      Release Notes: RipeMD160 is now used for both current-state reports and file checksums, instead of MD5 and SHA1 (respectively). This release introduces support for delayed failures.

      •  21 Sep 2005 08:07

        Release Notes: Changes in the file type are now detected correctly, as are changes to device node major/minor numbers and symlink targets. Support for systems without static linking support was added. Directories configured to be ignored are now ignored.

        •  09 Sep 2002 05:41

          Release Notes: Large file support is now built-in by default on platforms that have LFS. There was a minor bugfix in the human-readable reporting of files that were changed to symlink.

          •  20 Jul 2002 01:22

            Release Notes: This stable release includes many portability enhancements. auxiliary tools in utils directory now display checksums by default.

            Recent comments

            03 Jun 2007 03:07 gvy

            another c++ project on the same topic
            here are links for 'osec' integrity checker tool used in ALT Linux:

            http://freshmeat.net/projects/o-security/

            http://git.altlinux.org/people/inger/packages/?p=osec.git;a=summary

            you might be interested in sharing some effort.

            PS: how does wmnd do? :)

            06 Jan 2001 17:15 karellen

            nice
            This tool is pretty nice and it has most of the things I wanted
            from a file integrity verification system: constant datbases,
            file attributes like inode, pemissions, number of links, uid,
            gid, file size, access and modification times, and of course
            SHA checksums. It's statically linked with OpenSSL and CDB,
            so things don't get messed up if someone poisons your libs.
            Very simple config file syntax (syslog.conf like) and checksum
            generation for the current/known state database so you know
            if it's been tampered with. See the homepage for more info.

            Keep up the good work, I'd like to see this included in Debian ;*)

            Screenshot

            Project Spotlight

            OpenStack4j

            A Fluent OpenStack client API for Java.

            Screenshot

            Project Spotlight

            TurnKey TWiki Appliance

            A TWiki appliance that is easy to use and lightweight.