ImSafe (Immune Security For your Enterprise) is a host-based intrusion detection tool.
- LICENSE TYPE:
- GPL (GNU General Public License)
- USER RATING:
- DEVELOPED BY:
- Laurent Eschenauer
- ROOT \ System \ Monitoring
ImSafe (Immune Security For your Enterprise) is a host-based intrusion detection tool. After a learning phase, it is able to detect changes in processes behavior, to detect buffer overflows, etc. It is implemented through a device driver (as a kernel patch) for the Linux kernel, but can also be run on other UNIX systems by using a "sensor" built on strace base.
Last updated on July 8th, 2006