Tools
scan-detector
by Christoph Schuba/Gene Spafford <scuba (at) cs.purdue (dot) edu [email concealed]> <spaf (at) cs.purdue (dot) edu [email concealed]>
Platforms: AIX, BSDI, Digital UNIX/Alpha, FreeBSD, HP-UX, IRIX, Linux, NetBSD, OpenBSD, Solaris, SunOS, True64 UNIX, Ultrix, UNIX, Unixware
Categories: Intrusion Detection, Monitoring, Network, Network, Network Utilities, Utilities
Version:
URL: ftp://ftp.cs.purdue.edu
Scan-detector is a simple detector for automated scans of TCP/ UDP ports on a host. It works by opening a socket on specified ports, and watches for a connection. When a connection is established, the host name, source port, destination host, destination port, and a number of other pieces of information are logged.

    Tools
 
Comments Mode:


 

Privacy Statement
Copyright 2010, SecurityFocus