OSDN > Find Software > System > Networking > Firewalls > Port Scan Attack Detector > Download File List > #145221

Port Scan Attack Detector

RSS
Download List

Project Description

The Port Scan Attack Detector (psad) is a collection of three system daemons that are designed to work with the Linux iptables firewalling code to detect port scans and other suspect traffic. It features a set of highly configurable danger thresholds (with sensible defaults), verbose alert messages, email alerting, DShield reporting, and automatic blocking of offending IP addresses. Psad incorporates many of the packet signatures included in Snort to detect various kinds of suspicious scans, and implements the same passive OS fingerprinting algorithm used by p0f.

System Requirements

System requirement is not defined

Review

Average

0.0

0 Reviews

5 Stars	0
4 Stars	0
3 Stars	0
2 Stars	0
1 Star	0

Your rating

Review this project

Information regarding Project Releases and Project Resources. Note that the information here is a quote from Freecode.com page, and the downloads themselves may not be hosted on OSDN.

2008-04-04 08:06 Back to release list
2.1.2

A bug was fixed so that kernel timestamps are not
included in iptables log prefixes that contain
spaces like "[ 65.026008] DROP". Non-resolved IP
addresses are now skipped. p0f output in --debug
mode was improved to display when a passive OS
fingerprint cannot be calculated based on iptables
log messages that include TCP options (i.e. with
--log-tcp-options when building a LOG rule on the
iptables command line).

Tags: Minor bugfixes

Project Resources

Project Page Download: bzip2 Download: Changelog Download: Debian Package (deb) Home Page Download: List Download: Mirror Download: RPM Download: TGZ