Intrusion Detection

Monitoring Linux File access, Changes and Data Modifications

file integrity
file integrity monitoring

Linux has several methods available to protect your valuable data. With the right tool we can audit file access, including changes.

Detecting Linux rootkits

backdoor
intrusion detection
linux
malware
rootkit

Linux rootkits are malicious components to maintain unauthorized access. In this article about intrusion detection we have a look at rootkits and detection.

Linux Audit Framework: using aureport

audit
auditd

Guide regarding the aureport utility, including some aureport examples. Aureport helps with audit reports and is part of the Linux audit framework.

Antivirus for Linux: is it really needed?

antivirus
linux
malware
scanner
virus

Is antivirus really needed on Linux systems? The honest answer is that it depends on your situation and what you are running. Let's have a look why.