Hybrid IT Monitoring and Analytics Software - SaaS, Virtual, Physical
Zenoss is the global leader in hybrid IT monitoring and analytics software, providing complete visibility for cloud, virtual and physical IT environments for more than 40,000 global organizations. Zenoss customers gain IT performance and risk insights into their unique IT ecosystems through real-time analytics that adapt to the ever-evolving data center and cloud, enabling them to eliminate disruptions and accelerate business. The power of Zenoss Core begins with its in-depth IT inventory and configuration database. Zenoss creates this database by discovering managed resources -- networks, servers, storage, and other devices -- in your IT environment. Once Zenoss Core discovers the IT infrastructure, it automatically begins monitoring the performance of each device and provides event and fault management capabilities. Zenoss offers Open Source Core, Enterprise and SaaS solutions as well as an open API and SDK to easily extend your IT monitoring via Zenoss ZenPacks.
DenyHosts is a python program that automatically blocks ssh attacks by adding entries to /etc/hosts.deny. DenyHosts will also inform Linux administrators about offending hosts, attacked users and suspicious logins.
Open Source SIEM
OSSIM, AlienVault’s Open Source Security Information and Event Management (SIEM) product, provides event collection, normalization and correlation. For more advanced functionality, AlienVault Unified Security Management (USM) builds on OSSIM with these additional capabilities: * Log management * Advanced threat detection with a continuously updated library of pre-built correlation rules * Actionable threat intelligence updates from AlienVault Labs Security Research Team * Rich analytics dashboards and data visualization
BigBrotherBot (B3) is a cross-platform, cross-game game administration bot. Features in-game administration of game servers, multiple user access levels, and database storage. Currently include parsers for: Call of Duty, Urban Terror and more!
The goal of PyTables is to enable the end user to efficiently and easily manipulate large datasets (both homogenous, i.e. arrays, and heterogenous, i.e. tables) on a persistent, hierarchical way.
Scripts and tools to manage your Server.
py-rrdtool is a Python module provides an interface to RRDTool, the well known graphing/logging tool.
PyIDS is an intrusion detection system whose aim is to provide concise information to administrators about some parts of the system i.e filesystem checksums, unknown connections to the machine, access control lists of special files, log revision...
Postfix Log Parser in Python is a log analysis tool written in python language to get statistic reports and detect anomalous behaviours on a mail server based on Postfix and Cyrus
Kojoney is an easy of use, secure, robust and powerfull Honeypot for the SSH Service written in Python. With the kojoney daemon are distributeds other tools such as kip2country (IP to Country) and kojreport, a tool to generate reports from the log fi
A Python script that parses and mails ipchains, iptables and snort logfiles into the DSHIELD format for submission to DShield.org
Prysm is simply a log file colorizer implemented in Python. The current incarnation allows you to specify a 'color.rules' file that has the string you want matched, the foreground color and then the background color. To use it you simply pipe a stream
Multi-threaded host name and technical contact lookup tool. Reads a list of counted IP addresses (as outputted by uniq -c) from stdin or a file. Resolves their hostnames and (whois) technical contacts. Writes info to stdout.
A simple python project, which monitors arpwatch logs and notifies user if any arp poisining occurs.
Cislog is a syslog server that specifically targets Cisco devices and their implementation of the syslog protocol. It consists of a Django web interface and a syslog listener with a database between them.
Project's new home: https://github.com/Stunner/FileZilla-Log-Analyzer
Python scripts that filter, parse, mask, and analyze FileZilla Server Log files. Works on Windows, Linux, and Mac systems. WARNING: NEW VERSIONS ARE BEING POSTED TO GITHUB HERE: https://github.com/Stunner/FileZilla-Log-Analyzer
A multiplatform visual implementation of the Unix utility grep
Log file miner for link relationship building
Si vuole creare una piattaforma con la quale monitorare server sparsi sulla rete attraverso la rete, usando un sw daemon e vari tool con frontend web e un client gtk/win32.
Web log analysis package with dynamic reports for statistics on traffic, pages, internal and external links, search phrases, etc. Summarize by arbitrary periods from years to days. PHP, Python, Perl modules to show each page's stats in page's footer.
This is a program that watches your system log files, looking for hack attempts. It instanty reacts to potential security breaches by (for instance) adding firewall rules to cut off the attacker.
Loganalyzer for Windows XP Firewall and Linux Iptables firewall. Generates a nice html document with statistics from all the pakets captured by the firewall. The program is written in Python and has an (optional) graphical interface.
META is a decision making software which aims are to track computer attackers, computer attacks and to help investigators finding useful elements.
Python application for monitoring IPv6 Neighbour Discovery traffic on a network with customisable metrics for detecting and alerting to unwanted/malicious activity.