Samhain

Tool and Usage

Project details

Latest release: 4.2.1
Latest release date: 2016-04-06

Project health

This score is calculated by different factors, like project age, last release date, etc.

Links

Samhain project page

Introduction

Samhain is a host-based intrusion detection system (HIDS). It provides file integrity checking and log file monitoring/analysis. Additional features are rootkit detection, port monitoring, detection of rogue SUID executables, and the detection of hidden processes.

Samhain is typically deployed as a standalone application, although it supports centralized logging. This makes it ideal for environments with multiple systems.

Samhain is open source software and written by Rainer Wichmann.

Tool review and remarks

The review and analysis of this project resulted in the following remarks for this security tool:

Strengths

+ The source code of this software is available

Samhain alternatives

Similar tools to Samhain:

OSSEC

OSSEC is an open source host-based intrusion detection system (HIDS). It performs log analysis, integrity checking, rootkit detection, and more.

Snort

Snort is a network intrusion detection system (NIDS) that runs on Linux and other platforms.

100

Zeek

Zeek is a network security monitoring tool (NSM) and helps with monitoring. It can also play an active rol in performing forensics and incident response.

All Samhain alternatives

This tool page was updated at May 8, 2021. Found an improvement? Help the community by submitting an update.

Samhain

Tool and Usage

Project details

Project health

Links

Introduction

Tool review and remarks

Strengths

Samhain alternatives

OSSEC

Snort

Zeek

Related tool information

Related topics

Linux Security

Resources

Training

Tools

People

Linux Security Expert