psad-2.4.5-x86_64-1_slonly.txz


Advertisement

Description

psad - Intrusion Detection and Log Analysis with iptables

Distribution: Slackware 14.2
Repository: Slackonly x86_64
Package name: psad
Package version: 2.4.5
Package release: 1_slonly
Package architecture: x86_64
Package type: txz
Installed size: 6.54 MB
Download size: 752.00 KB
Official Mirror: packages.slackonly.com
psad is a collection of three lightweight system daemons (two main daemons and one helper daemon) that run on Linux machines and analyze iptables log messages to detect port scans and other suspicious. traffic. A typical deployment is to run psad on the iptables firewall where it has the fastest access to log data. Homepage: http://www.cipherdyne.org/psad/

Alternatives

    Download

    Source package: unknown

    Install Howto

    1. Download psad-2.4.5-x86_64-1_slonly.txz
    2. Install psad txz package:
      # upgradepkg --install-new psad-2.4.5-x86_64-1_slonly.txz

    Files

    • /etc/
    • /etc/logrotate.d/logrotate.psad
    • /etc/psad/auto_dl.new
    • /etc/psad/icmp6_types.new
    • /etc/psad/icmp_types.new
    • /etc/psad/ip_options.new
    • /etc/psad/pf.os.new
    • /etc/psad/posf.new
    • /etc/psad/protocols.new
    • /etc/psad/psad.conf.new
    • /etc/psad/signatures
    • /etc/psad/signatures.new
    • /etc/psad/snort_rule_dl.new
    • /etc/psad/archive/
    • /etc/psad/snort_rules/attack-responses.rules
    • /etc/psad/snort_rules/backdoor.rules
    • /etc/psad/snort_rules/bad-traffic.rules
    • /etc/psad/snort_rules/chat.rules
    • /etc/psad/snort_rules/classification.config
    • /etc/psad/snort_rules/ddos.rules
    • /etc/psad/snort_rules/deleted.rules
    • /etc/psad/snort_rules/dns.rules
    • /etc/psad/snort_rules/dos.rules
    • /etc/psad/snort_rules/emerging-all.rules
    • /etc/psad/snort_rules/experimental.rules
    • /etc/psad/snort_rules/exploit.rules
    • /etc/psad/snort_rules/finger.rules
    • /etc/psad/snort_rules/ftp.rules
    • /etc/psad/snort_rules/icmp-info.rules
    • /etc/psad/snort_rules/icmp.rules
    • /etc/psad/snort_rules/imap.rules
    • /etc/psad/snort_rules/info.rules
    • /etc/psad/snort_rules/local.rules
    • /etc/psad/snort_rules/misc.rules
    • /etc/psad/snort_rules/multimedia.rules
    • /etc/psad/snort_rules/mysql.rules
    • /etc/psad/snort_rules/netbios.rules
    • /etc/psad/snort_rules/nntp.rules
    • /etc/psad/snort_rules/oracle.rules
    • /etc/psad/snort_rules/other-ids.rules
    • /etc/psad/snort_rules/p2p.rules
    • /etc/psad/snort_rules/policy.rules
    • /etc/psad/snort_rules/pop2.rules
    • /etc/psad/snort_rules/pop3.rules
    • /etc/psad/snort_rules/porn.rules
    • /etc/psad/snort_rules/reference.config
    • /etc/psad/snort_rules/rpc.rules
    • /etc/psad/snort_rules/rservices.rules
    • /etc/psad/snort_rules/scan.rules
    • /etc/psad/snort_rules/shellcode.rules
    • /etc/psad/snort_rules/smtp.rules
    • /etc/psad/snort_rules/snmp.rules
    • /etc/psad/snort_rules/sql.rules
    • /etc/psad/snort_rules/telnet.rules
    • /etc/psad/snort_rules/tftp.rules
    • /etc/psad/snort_rules/virus.rules
    • /etc/psad/snort_rules/web-attacks.rules
    • /etc/psad/snort_rules/web-cgi.rules
    • /etc/psad/snort_rules/web-client.rules
    • /etc/psad/snort_rules/web-coldfusion.rules
    • /etc/psad/snort_rules/web-frontpage.rules
    • /etc/psad/snort_rules/web-iis.rules
    • /etc/psad/snort_rules/web-misc.rules
    • /etc/psad/snort_rules/web-php.rules
    • /etc/psad/snort_rules/x11.rules
    • /etc/rc.d/rc.psad.new
    • /install/doinst.sh
    • /install/slack-desc
    • /usr/
    • /usr/bin/nf2csv
    • /usr/bin/whois_psad
    • /usr/doc/
    • /usr/doc/psad-2.4.5/BENCHMARK
    • /usr/doc/psad-2.4.5/CREDITS
    • /usr/doc/psad-2.4.5/ChangeLog
    • /usr/doc/psad-2.4.5/FW_EXAMPLE_RULES
    • /usr/doc/psad-2.4.5/LICENSE
    • /usr/doc/psad-2.4.5/README.SYSLOG
    • /usr/doc/psad-2.4.5/README.md
    • /usr/doc/psad-2.4.5/SCAN_LOG
    • /usr/doc/psad-2.4.5/psad.SlackBuild
    • /usr/lib/
    • /usr/lib/psad/
    • /usr/lib/psad/Carp/Clan.pm
    • /usr/lib/psad/Carp/Clan.pod
    • /usr/lib/psad/IPTables/ChainMgr.pm
    • /usr/lib/psad/IPTables/Parse.pm
    • /usr/lib/psad/share/
    • /usr/lib/psad/share/man/
    • /usr/lib/psad/share/man/man3/Bit::Vector.3
    • /usr/lib/psad/share/man/man3/Bit::Vector::Overload.3
    • /usr/lib/psad/share/man/man3/Bit::Vector::String.3
    • /usr/lib/psad/share/man/man3/Carp::Clan.3
    • /usr/lib/psad/share/man/man3/Date::Calc.3
    • /usr/lib/psad/share/man/man3/Date::Calc::Object.3
    • /usr/lib/psad/share/man/man3/Date::Calc::PP.3
    • /usr/lib/psad/share/man/man3/Date::Calendar.3
    • /usr/lib/psad/share/man/man3/Date::Calendar::Profiles.3
    • /usr/lib/psad/share/man/man3/Date::Calendar::Year.3
    • /usr/lib/psad/share/man/man3/IPTables::ChainMgr.3
    • /usr/lib/psad/share/man/man3/IPTables::Parse.3
    • /usr/lib/psad/share/man/man3/NetAddr::IP.3
    • /usr/lib/psad/share/man/man3/NetAddr::IP::InetBase.3
    • /usr/lib/psad/share/man/man3/NetAddr::IP::Lite.3
    • /usr/lib/psad/share/man/man3/NetAddr::IP::Util.3
    • /usr/lib/psad/share/man/man3/NetAddr::IP::UtilPP.3
    • /usr/lib/psad/share/man/man3/Unix::Syslog.3
    • /usr/lib/psad/x86_64-linux-thread-multi/perllocal.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Bit/Vector.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Bit/Vector.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Bit/Vector/Overload.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Bit/Vector/Overload.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Bit/Vector/String.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Bit/Vector/String.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Carp/Clan.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Carp/Clan.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calc.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calc.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calendar.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calendar.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calc/Object.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calc/Object.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calc/PP.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calc/PP.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calendar/Profiles.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calendar/Profiles.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calendar/Year.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Date/Calendar/Year.pod
    • /usr/lib/psad/x86_64-linux-thread-multi/NetAddr/IP.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/NetAddr/IP/InetBase.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/NetAddr/IP/Lite.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/NetAddr/IP/Util.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/NetAddr/IP/UtilPP.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/NetAddr/IP/Util_IS.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/Unix/Syslog.pm
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Bit/
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Bit/Vector/.packlist
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Bit/Vector/Vector.so
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Carp/
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Carp/Clan/.packlist
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Date/
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Date/Calc/.packlist
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Date/Calc/Calc.so
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/IPTables/
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/IPTables/ChainMgr/.packlist
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/IPTables/Parse/.packlist
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/.packlist
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/_compV6.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/_compact_v6.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/_splitplan.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/_splitref.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/autosplit.ix
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/canon.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/coalesce.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/compactref.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/do_prefix.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/hostenum.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/mod_version.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/nprefix.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/prefix.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/re.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/re6.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/short.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/wildcard.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/_inet_ntop.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/_inet_pton.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/_packzeros.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/autosplit.ix
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/inet_any2n.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/inet_n2ad.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/inet_n2dx.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/inet_ntoa.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/ipv6_aton.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/InetBase/ipv6_ntoa.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/Util/Util.so
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/Util/autosplit.ix
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/_128x10.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/_128x2.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/_bcd2bin.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/_bcdcheck.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/_bin2bcdn.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/_deadlen.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/_sa128.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/add128.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/addconst.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/autosplit.ix
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/bcd2bin.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/bcdn2bin.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/bcdn2txt.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/bin2bcd.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/bin2bcdn.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/comp128.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/hasbits.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/ipanyto6.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/ipv4to6.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/ipv6to4.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/mask4to6.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/maskanyto6.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/notcontiguous.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/shiftleft.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/simple_pack.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/slowadd128.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/NetAddr/IP/UtilPP/sub128.al
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Unix/
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Unix/Syslog/.packlist
    • /usr/lib/psad/x86_64-linux-thread-multi/auto/Unix/Syslog/Syslog.so
    • /usr/man/
    • /usr/man/man1/nf2csv.1.gz
    • /usr/man/man8/kmsgsd.8.gz
    • /usr/man/man8/psad.8.gz
    • /usr/man/man8/psadwatchd.8.gz
    • /usr/sbin/fwcheck_psad
    • /usr/sbin/kmsgsd
    • /usr/sbin/psad
    • /usr/sbin/psadwatchd
    • /var/
    • /var/lib/
    • /var/lib/psad/
    • /var/log/
    • /var/log/psad/fwdata
    • /var/log/psad/install.log
    • /var/run/
    • /var/run/psad/
    Advertisement
    Advertisement