IDEA is an architecture for implementing a distributed intrusion detection system on a computer network. It provides a way to incorporate many different IDS sensors into an architecture, and have them report to a central IDS server. This server collects, aggregates, and correlates data from the sensors, providing a unified view of network activity. By specifying an open API, many different clients can connect to the IDEA server and "subscribe" to the event notification service so that the client will be notified any time a new alert is received from any of the sensors.
IptablesWeb allows a user to inspect iptables logs and to receive email and alerts using a Web browser. It is plugin-based, portable to any database, and supports multiple languages and multiple users. It features the ability to duplicate each plugin in any number of blocks, each with its own characteristics. The update (refresh) time can be set on each block to reduce the CPU load. Blocks can be dragged and dropped to change their display order.
Isoqlog is an MTA log analysis program written in C. It is designed to scan qmail, Postfix, Sendmail, and Exim logfiles and produce usage statistics in HTML for viewing through a browser. It produces a "top domains" statistic according to sender, receiver, total mails, and bytes, and keeps the main domain mail statistics with regard to day's top domain, and top users values for per day, per month, and per year.