Menu
Home Explore People Places Arts History Plants & Animals Science Life & Culture Technology
On this page
Host-based intrusion detection system comparison

Comparison of host-based intrusion detection system components and systems.

We don't have any images related to Host-based intrusion detection system comparison yet.
We don't have any YouTube videos related to Host-based intrusion detection system comparison yet.
We don't have any PDF documents related to Host-based intrusion detection system comparison yet.
We don't have any Books related to Host-based intrusion detection system comparison yet.
We don't have any archived web articles related to Host-based intrusion detection system comparison yet.

Free and open-source software

As per the Unix philosophy a good HIDS is composed of multiple packages each focusing on a specific aspect.

PackageUpdatedUbuntu Official RepositoriesCentOS Official RepositoriesopenSUSE Official RepositoriesFileNetworkLogsConfigNotes
OSSEC2025No1No2Yes3YesYesYesYes
Wazuh2022NoNo?YesYesYesYes
Samhain2023Yes4NoYes5YesNoPartial6
Snort2021Yes7No8NoNoYesNo
chkrootkit2023Yes9NoYesYesNoPartial10
rkhunter2018Yes11Yes12YesYesNoNoYes
unhide132012Yes14Yes15YesNoNoNoproc ps compare
Sguil2017NoNoNoNoYesNo
Logwatch162017Yes17Yes18YesNoNoYes
Logcheck192017Yes20Yes21YesNoNoYes
Epylog222014Yes23Yes24YesNoNoYes
SWATCH252015Yes26Yes27YesNoNoYes
sagan2021Yes28NoNoNoNoYes
aide2023Yes29Yes30YesYesNoNo
tripwire2018Yes31Yes32YesYesNoNo
Tiger2018Yes33NoNoYesNoNoYes3/42 modules are Debian specific.

Proprietary software

PackageYear34LinuxWindowsFileNetworkLogsConfigNotes
Lacework2018YesNoYesYesYesYes
Verisys2018YesYesYesYesYes
Nessus2017YesYesYes
Atomicorp2019YesYesYesYesYesYesCommercially enhanced version of OSSEC
Spartan2021NoYesYesYesYesYesWebsocket API, IP to Country mapping, DynDNS Integration

References

  1. "Downloads OSSEC". OSSEC. Retrieved 2017-10-19. OSSEC for Debian Based systems https://ossec.github.io/downloads.html#apt-automated-installation-on-ubuntu-and-debian

  2. "Downloads OSSEC". OSSEC. Retrieved 2017-10-29. OSSEC for RHEL/Fedora Based systems https://ossec.github.io/downloads.html#rhel-centos-fedora-and-others

  3. "ossec-hids". openSUSE OBS. Retrieved 2024-08-11. An Open Source Host-based Intrusion Detection System https://software.opensuse.org/package/ossec-hids

  4. "Samhain". Ubuntu. Retrieved 2017-04-19. Samhain in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=samhain

  5. "Samhain". openSUSE OBS. Retrieved 2024-08-11. File integrity and host-based IDS https://software.opensuse.org/package/samhain?search_term=Samhain

  6. Last

  7. "Snort". Ubuntu. Retrieved 2017-04-19. Snort in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=snort

  8. "Snort". Cisco Systems. Retrieved 2017-05-31. Snort in the CentOS Repositories https://pkgs.org/download/snort

  9. "ChkRootkit". Ubuntu. Retrieved 2017-04-19. ChkRootkit in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=chkrootkit

  10. lastlog, wtmp, utmp, wtmpx

  11. "RKHunter". Ubuntu. Retrieved 2017-04-19. RKHunter in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=rkhunter

  12. "RKHunter". Ubuntu. Retrieved 2017-04-19. RKHunter in the CentOS Repositories https://pkgs.org/download/rkhunter

  13. "unhide". debian. Retrieved 2017-04-17.unhide is notable because it's part of Debian and Fedora https://packages.debian.org/search?keywords=unhide

  14. "UnHide". Ubuntu. Retrieved 2017-04-19. UnHide in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=unhide

  15. "UnHide". Ubuntu. Retrieved 2017-04-19. UnHide in the CentOS Repositories https://pkgs.org/download/unhide

  16. "Logwatch". debian. Retrieved 2017-04-17. Logwatch is notable because it's part of Debian and Fedora https://packages.debian.org/search?keywords=logwatch

  17. "LogWatch". Ubuntu. Retrieved 2017-04-19. LogWatch in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=logwatch

  18. "LogWatch". Ubuntu. Retrieved 2017-04-19. LogWatch in the CentOS Repositories https://pkgs.org/download/logwatch

  19. "Logcheck". debian. Retrieved 2017-04-17. Logcheck is notable because it's part of Debian and Fedora https://packages.debian.org/search?keywords=logcheck

  20. "Logcheck". Ubuntu. Retrieved 2017-04-19. Logcheck in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=logcheck

  21. "Logcheck". Ubuntu. Retrieved 2017-04-19. Logcheck in the CentOS Repositories https://pkgs.org/download/logcheck

  22. "Epylog". debian. Retrieved 2017-04-17. Epylog is notable because it's part of Debian and Fedora https://packages.debian.org/search?keywords=epylog

  23. "Epylog". Ubuntu. Retrieved 2017-04-19. Epylog in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=epylog

  24. "Epylog". Ubuntu. Retrieved 2017-04-19. Epylog in the CentOS Repositories https://pkgs.org/download/epylog

  25. "SWATCH". debian. Retrieved 2017-04-17. SWATCH is notable because it's part of Debian and Fedora https://packages.debian.org/search?keywords=swatch

  26. "SWATCH". Ubuntu. Retrieved 2017-04-19. SWATCH in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=swatch

  27. "SWATCH". Ubuntu. Retrieved 2017-04-19. SWATCH in the CentOS Repositories https://pkgs.org/download/swatch

  28. "Sagan". Ubuntu. Retrieved 2017-04-19. Sagan in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=sagan

  29. "AIDE". Ubuntu. Retrieved 2017-04-19. AIDE in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=aide

  30. "AIDE". Ubuntu. Retrieved 2017-04-19. AIDE in the CentOS Repositories https://pkgs.org/download/aide

  31. "Tripwire". Ubuntu. Retrieved 2017-04-19. Tripwire in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=tripwire

  32. "Tripwire". Ubuntu. Retrieved 2017-04-19. Tripwire in the CentOS Repositories https://pkgs.org/download/tripwire

  33. "Tripwire". Ubuntu. Retrieved 2017-04-19. Tripwire in the Ubuntu Repositories http://packages.ubuntu.com/search?keywords=tiger

  34. Last updated