On Thursday 10 July 2008 11:50:33 am croilan cruz wrote: > Greetings!!! > > Is there any Opensource that can monitor/detect compromise pc's.. in terms > of viruses,worms,bot-net,zombies etc? > > Thanks... > > froilan
There are products like clam antivirus to detect viruses and worms on the local computer to do a scan via the network you can also use some other products which detect open ports and then you can do things like Penetration tests, (DO NOT do this with out permission or knowing what damage you could cause.) "Nessus" Next on the list is a system using a Sniffer like "snort", and then configuring it to detect the worms and the bot-net activity. You could set up a honey-pot internally and watch for systems to attack it. Many things are out there for this.. But you have to look for your specific case then decide on what you want to setup and use. I use a combination of programs, including Wireless applications and even things like redfang.. ( Bluetooth searchtool ) Many programs are developed for one or two specific tasks, Programs like Nessus come with thousands of plugins to help with the scan and detection and penetration. _________________________________________________ Philippine Linux Users' Group (PLUG) Mailing List http://lists.linux.org.ph/mailman/listinfo/plug Searchable Archives: http://archives.free.net.ph
