CheckScan
Platforms:
N/A
Categories:
Auditing,
Log Analysis,
Log Management,
Utilities
Version: 0.2
URL:
CheckScan is a simple utility written in bash that reads the logs generated by ipchains ( with the "- l" option ) from syslog. If it reads 4 DENY statements, it sends an alert for a possible checkscan or intrusion attack. The alerts can vary, including sending an e-mail or an sms message with other programs.
