github/Antidoto
2
0
Fork 0
mirror of https://github.com/donl/Antidoto.git synced 2026-05-26 14:22:11 -06:00
Code Issues Projects Packages Wiki Activity Actions

Commit graph

  • b3b3a9014a Merge pull request #10 from mrqwer88/master master Pavel Odintsov 2015-06-17 13:47:44 +03:00
  • fd43d54b8d add new port to black list in linux_network_activity_tracker.pl Sergey A Mamonov 2015-06-17 13:43:02 +03:00
  • 4ddacdbe7a Fix typoe in var name Pavel Odintsov 2014-12-31 02:41:29 +03:00
  • d0da48fa65 Add info about linux_network_activity_tracker Pavel Odintsov 2014-12-29 01:36:34 +03:00
  • 8ef351f226 Fix typo Pavel Odintsov 2014-12-28 20:16:28 +03:00
  • db8cf9d99e Fix newlines Pavel Odintsov 2014-12-28 20:14:05 +03:00
  • 41eeb05970 Move function for building tree to module Pavel Odintsov 2014-12-28 20:07:39 +03:00
  • ab31ffc708 Add tool for network monitoring for Linux Pavel Odintsov 2014-12-28 20:05:06 +03:00
  • d6496f3d4c Fix Pavel Odintsov 2014-12-28 19:31:42 +03:00
  • 0bba0add26 Separate toolkit into library and main programm Pavel Odintsov 2014-12-28 19:27:25 +03:00
  • 3232573c19 Merge pull request #6 from tataranovich/master Pavel Odintsov 2014-09-04 23:28:34 +04:00
  • 6385e31926 Message fixes and some clarification on suspicious files/dirs. Andrey Tataranovich 2014-09-04 22:22:39 +03:00
  • 77922eea7c Crontab check: Use $ctid variable only if it set Unix sockets: /proc/net/unix format changed, now it's only 8 digits Andrey Tataranovich 2014-09-04 22:00:34 +03:00
  • e87a234631 Fix inotify handling Pavel Odintsov 2014-05-09 14:41:07 +04:00
  • ebe53f8bf7 remove debug messages Pavel Odintsov 2014-05-09 14:40:02 +04:00
  • e07dd9bc08 Fix blank lines in /etc/passwd Pavel Odintsov 2014-05-09 14:26:09 +04:00
  • f4e7c68579 Fixes #4 Pavel Odintsov 2014-05-09 14:21:30 +04:00
  • 963d110e4c Update README.md pavel-odintsov 2014-05-09 14:08:37 +04:00
  • 78746f3aaa Update README.md pavel-odintsov 2014-05-09 14:02:58 +04:00
  • f87fd09335 Translate readme to english Pavel Odintsov 2014-05-09 00:33:05 +04:00
  • da02a6a5f7 Fix Pavel Odintsov 2014-05-08 16:11:02 +04:00
  • 6882b89eee Add docs Pavel Odintsov 2014-05-08 16:05:23 +04:00
  • 7bed894374 We parse /proc/pid/environ for every process now Pavel Odintsov 2014-05-08 13:02:48 +04:00
  • 768005e3c9 remove warnigns Pavel Odintsov 2014-05-08 12:39:11 +04:00
  • 503a9ef059 Rewrite /etc/passwd parser; add CT number in audit mode; Fix tcp connections parser for support negative hid; Pavel Odintsov 2014-05-08 12:37:30 +04:00
  • eaf2d78907 reformat links Pavel Odintsov 2014-05-08 11:51:10 +04:00
  • 36a72a41fc reformat links Pavel Odintsov 2014-05-08 11:38:37 +04:00
  • 31a49d17eb fix for exclude spceial files Pavel Odintsov 2014-05-08 10:32:06 +04:00
  • 2d1f7220c4 add link on audit mode Pavel Odintsov 2014-05-07 20:48:30 +04:00
  • 6888cee33b Add doctentation Pavel Odintsov 2014-05-07 20:46:52 +04:00
  • d812e1e84c Add ability to compress multiple forks for one programm Pavel Odintsov 2014-05-07 20:37:31 +04:00
  • ea1e742eff add ability to hide system processes Pavel Odintsov 2014-05-07 19:11:36 +04:00
  • 9e7148e57a add ability to exclude standard ports Pavel Odintsov 2014-05-07 18:55:20 +04:00
  • a533b5f454 network analyzer code refactoring Pavel Odintsov 2014-05-07 18:18:53 +04:00
  • a710fda82f add todo for audit mode Pavel Odintsov 2014-05-07 16:28:52 +04:00
  • 48488b3195 fix typo Pavel Odintsov 2014-05-07 16:28:36 +04:00
  • c4ae74c8bf network connections analyzer unification Pavel Odintsov 2014-05-07 13:45:19 +04:00
  • 6224a324d6 Intoroduce mode: perl Antidoto.pl --audit Pavel Odintsov 2014-05-07 12:17:59 +04:00
  • 2ed77261c9 fix dev docs Pavel Odintsov 2014-05-07 10:38:25 +04:00
  • d714b255d9 fix docs Pavel Odintsov 2014-05-06 19:45:39 +04:00
  • 28f21e06e7 add develoepr docs Pavel Odintsov 2014-05-06 19:44:37 +04:00
  • a6078f8295 intoruce audit mode, pretty output for connection printer Pavel Odintsov 2014-05-06 19:24:08 +04:00
  • 29c00ba24e Remove awk dependency Pavel Odintsov 2014-05-06 17:58:43 +04:00
  • 00a67f8bc3 fix in todo Pavel Odintsov 2014-05-06 15:25:38 +04:00
  • fe57d2932b move todo to markdown format Pavel Odintsov 2014-05-06 15:25:09 +04:00
  • 2086eb0232 fix markup Pavel Odintsov 2014-05-06 15:04:12 +04:00
  • 168f2f6e84 fix markup Pavel Odintsov 2014-05-06 15:03:43 +04:00
  • 2fbfc2a1a4 Add documentation Pavel Odintsov 2014-05-06 14:59:04 +04:00
  • f33370d5ce Remove global variabes for checksumm check Pavel Odintsov 2014-05-06 13:26:31 +04:00
  • ac6149aa36 add timerfd exclude Pavel Odintsov 2014-05-06 12:43:18 +04:00
  • f29556cef8 add todo points Pavel Odintsov 2014-05-06 12:43:01 +04:00
  • 751da43a89 add eventpool descripto exclude Pavel Odintsov 2014-05-06 12:40:34 +04:00
  • ff36beaf9d Fix bug with orphan connections blacklisting Pavel Odintsov 2014-05-06 12:11:07 +04:00
  • 498ed8ff13 less verbose orphan sockets scanner and silent hidden files checker Pavel Odintsov 2014-05-06 02:12:08 +04:00
  • ba8cb33c5e add passwd parser Pavel Odintsov 2014-05-06 01:01:31 +04:00
  • 4a6e69e4c4 exclude script from system autid Pavel Odintsov 2014-05-06 00:27:47 +04:00
  • 0cedce41f8 Fix bug with process connections and create stub function for system overview Pavel Odintsov 2014-05-05 23:59:31 +04:00
  • e7a3623d12 add ppid to diagnotic output Pavel Odintsov 2014-05-05 19:57:03 +04:00
  • fd7b89a5bc biggg refactoring, big step in unification node and server analyzer Pavel Odintsov 2014-05-05 19:44:23 +04:00
  • da220026b1 Move getting process pids for server to separate function Pavel Odintsov 2014-05-05 18:20:30 +04:00
  • 48232488ae Small refactoring Pavel Odintsov 2014-05-05 18:08:47 +04:00
  • 3598c1ba65 Add exluctde for faslse positive Pavel Odintsov 2014-05-05 16:29:12 +04:00
  • e85a503a30 fix readme Pavel Odintsov 2014-05-05 16:28:53 +04:00
  • e537cd5310 add ability to check exe with clam daemon Pavel Odintsov 2014-05-05 13:27:04 +04:00
  • cf316be9f6 add todo Pavel Odintsov 2014-05-05 00:38:09 +04:00
  • c1bb6791b2 add excludes Pavel Odintsov 2014-05-05 00:26:03 +04:00
  • 8f8d304bf1 Add hwn validation for openvz case Pavel Odintsov 2014-05-05 00:14:10 +04:00
  • dd9c918081 Add support tools and functions, add checking for orphaned connections, ad in_array function, connection parser unification Pavel Odintsov 2014-05-04 22:37:23 +04:00
  • 94716fdd3b tcp/udp/unix connections parser unification Pavel Odintsov 2014-05-04 20:28:52 +04:00
  • 2b907106af Move open connections parser to separate function Pavel Odintsov 2014-05-04 20:16:01 +04:00
  • 0119327589 add function for parsing openvz CT ips Pavel Odintsov 2014-05-04 19:20:48 +04:00
  • e1e332c4a5 we use local (to container) net/tcp net/udp and net/unix insteag global file Pavel Odintsov 2014-05-04 18:40:06 +04:00
  • 39a41f4ad4 add unix domain socket connections parser Pavel Odintsov 2014-05-04 14:10:17 +04:00
  • 17a9ca3eba Add support for parsing upd v6 Pavel Odintsov 2014-05-04 00:17:06 +04:00
  • f324f5fc2b add ipv6 support for tcp connection parser Pavel Odintsov 2014-05-04 00:12:47 +04:00
  • ade1002f71 add debug about sockets Pavel Odintsov 2014-05-03 23:57:30 +04:00
  • 5e15bdf2e1 add recurdive sumlink resolver Pavel Odintsov 2014-05-03 23:28:43 +04:00
  • 43ff0c7aff Fixes #2 skip processing vztll processes from OpenVZ node (hwn) Pavel Odintsov 2014-05-03 22:06:17 +04:00
  • d15bd30216 Fixes #1 Pavel Odintsov 2014-05-03 21:37:36 +04:00
  • 1ebef55624 almost ready to pruduction check for changed programm name Pavel Odintsov 2014-05-03 13:55:22 +04:00
  • 0467d73027 small refactoring and stub for new features Pavel Odintsov 2014-05-03 00:39:15 +04:00
  • ca9d2dd6c8 Pretty print Pavel Odintsov 2014-05-02 23:56:05 +04:00
  • 8b22277fc4 New wrapper for printing data Pavel Odintsov 2014-05-02 23:53:29 +04:00
  • 5f12d7b4b1 add readme Pavel Odintsov 2014-05-02 23:05:17 +04:00
  • f4654a4b7d Yep, we can work on bare metal Pavel Odintsov 2014-05-02 23:02:02 +04:00
  • e7fe0f5859 enable hash validation on baremetal servers Pavel Odintsov 2014-05-02 22:50:07 +04:00
  • 34635b5741 Add support for running on bare servers witout openvz Pavel Odintsov 2014-05-02 22:47:40 +04:00
  • 020528bc11 move todo to separate file Pavel Odintsov 2014-05-02 21:57:48 +04:00
  • 4500154bfb Initial commit root 2014-05-02 21:50:06 +04:00
  • 33eeb60275 Initial commit pavel-odintsov 2014-05-02 10:46:18 -07:00