An open source PERL script providing intrusion detection and policy enforcement.
The only way to tell what has been modified on your system is by a snapshot of your complete file systems, before the modification or intrusion took place.
FCheck fills in that missing information by not only generating the needed "pristene" system snapshot, but when properly configured and used, will monitor the system and immediately report any deviations from that original snapshot.
FCheck is an open source PERL script providing intrusion detection and policy enforcement of Windows 95/98/NT/3.x and Unix server administration through the use of comparative system snapshots. FCheck can provide notification of any differences found through use of your event management system, printer, and/or email when any monitored files or directories are altered, including any additions and/or deletions.
FCheck is made in PERL script on any platform that supports PERL and long filenames. That means FCheck is not limited to UNIX platforms, but can run on Win32 platforms with PERL installed. Currently only one other baseline system security tool exist (Tripwire), and is purchasable with licensing agreements, etc. All FCheck code is written from scratch, and is owned solely by the author, but rights are granted for its usage to any site that desires free baseline security measures.