LockdownSourceCode (1 vs. 12)

University of Notre Dame NetScale Laboratory

View r12 > r11 > r10 > r9 > r8 ...

LockdownSourceCode 12 - 23 Oct 2009 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 35 to 35

META FILEATTACHMENT	attachment="lockdown-client.zip" attr="" comment="agent installation package" date="1225905694" name="lockdown-client.zip" path="lockdown-client.zip" size="13404" stream="lockdown-client.zip" tmpFilename="/usr/tmp/CGItemp13205" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processor and server package" date="1225994086" name="lockdown-server.zip" path="lockdown-server.zip" size="277130" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp15494" user="QiLiao" version="3"
META FILEATTACHMENT	attachment="lockdown-viewer.zip" attr="" comment="visualization tool package" date="1225929081" name="lockdown-viewer.zip" path="lockdown-viewer.zip" size="2390866" stream="lockdown-viewer.zip" tmpFilename="/usr/tmp/CGItemp13685" user="QiLiao" version="2"

Changed:

<
<

META FILEATTACHMENT	attachment="ENAVis.zip" attr="" comment="Latest ENAVis visualization tool and data processing program" date="1255111048" name="ENAVis.zip" path="ENAVis.zip" size="10644038" stream="ENAVis.zip" tmpFilename="/usr/tmp/CGItemp33299" user="QiLiao" version="1"

>
>

META FILEATTACHMENT	attachment="ENAVis.zip" attr="" comment="Latest ENAVis package (include test data)" date="1256270071" name="ENAVis.zip" path="ENAVis.zip" size="10575071" stream="ENAVis.zip" tmpFilename="/usr/tmp/CGItemp15501" user="QiLiao" version="2"

LockdownSourceCode 11 - 09 Oct 2009 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Changed:

<
<

DOWNLOAD latest package (updated 11/5/2008)
- lockdown-client.zip: agent installation package
- lockdown-server.zip: data processing and server installation package
- lockdown-viewer.zip: visualization tool package
- Lockdown.zip (updated 4/29/2009): Update of Lockdown.jar and libraries. Instructions: simply replace the old Lockdown.jar and lib directory with this new update binary.

>
>

DOWNLOAD latest package (updated 10/9/2009)
- ENAVis.zip: Latest ENAVis visual analysis tool and back-end data processing program. It includes a runnable .jar file and a few other libraries. Instruction: launch the run.bat/run.sh, goes to File-open, and select all included .ght files. Note: the included data is only a portion of data required to run the visualization tool properly. A few functions will not available (or even crash) without full data from setting up server and running the agents properly. But it's good for you to get started.

Monitor: The Monitor is installed on each host within the network and is responsible for collecting the local context [netstat, ps, and lsof data] and sending it to the collecting server.
- Linux: exp_deploy.zip

Line: 29 to 26

Added:

>
>

Lockdown.zip: Latest ENAVis visualization tool and data processing program

ENAVis.zip: Latest ENAVis visualization tool and data processing program

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"

Deleted:

<
<

META FILEATTACHMENT	attachment="Lockdown.zip" attr="h" comment="Update of Lockdown.jar and libraries." date="1241039696" name="Lockdown.zip" path="Lockdown.zip" size="5401995" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp24122" user="QiLiao" version="3"

META FILEATTACHMENT	attachment="lockdown-client.zip" attr="" comment="agent installation package" date="1225905694" name="lockdown-client.zip" path="lockdown-client.zip" size="13404" stream="lockdown-client.zip" tmpFilename="/usr/tmp/CGItemp13205" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processor and server package" date="1225994086" name="lockdown-server.zip" path="lockdown-server.zip" size="277130" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp15494" user="QiLiao" version="3"
META FILEATTACHMENT	attachment="lockdown-viewer.zip" attr="" comment="visualization tool package" date="1225929081" name="lockdown-viewer.zip" path="lockdown-viewer.zip" size="2390866" stream="lockdown-viewer.zip" tmpFilename="/usr/tmp/CGItemp13685" user="QiLiao" version="2"

Added:

>
>

META FILEATTACHMENT	attachment="ENAVis.zip" attr="" comment="Latest ENAVis visualization tool and data processing program" date="1255111048" name="ENAVis.zip" path="ENAVis.zip" size="10644038" stream="ENAVis.zip" tmpFilename="/usr/tmp/CGItemp33299" user="QiLiao" version="1"

LockdownSourceCode 10 - 29 Apr 2009 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 7 to 7

- lockdown-client.zip: agent installation package
- lockdown-server.zip: data processing and server installation package
- lockdown-viewer.zip: visualization tool package

Added:

>
>

- Lockdown.zip (updated 4/29/2009): Update of Lockdown.jar and libraries. Instructions: simply replace the old Lockdown.jar and lib directory with this new update binary.

Monitor: The Monitor is installed on each host within the network and is responsible for collecting the local context [netstat, ps, and lsof data] and sending it to the collecting server.
- Linux: exp_deploy.zip

Line: 26 to 27

- new release, 10/6/2008: Lockdown.zip

Added:

>
>

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"

Changed:

<
<

META FILEATTACHMENT	attachment="Lockdown.zip" attr="" comment="most recent jar package for data processor, server and visualization client" date="1225680855" name="Lockdown.zip" path="Lockdown.zip" size="2391662" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp13660" user="QiLiao" version="2"

>
>

META FILEATTACHMENT	attachment="Lockdown.zip" attr="h" comment="Update of Lockdown.jar and libraries." date="1241039696" name="Lockdown.zip" path="Lockdown.zip" size="5401995" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp24122" user="QiLiao" version="3"

META FILEATTACHMENT	attachment="lockdown-client.zip" attr="" comment="agent installation package" date="1225905694" name="lockdown-client.zip" path="lockdown-client.zip" size="13404" stream="lockdown-client.zip" tmpFilename="/usr/tmp/CGItemp13205" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processor and server package" date="1225994086" name="lockdown-server.zip" path="lockdown-server.zip" size="277130" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp15494" user="QiLiao" version="3"
META FILEATTACHMENT	attachment="lockdown-viewer.zip" attr="" comment="visualization tool package" date="1225929081" name="lockdown-viewer.zip" path="lockdown-viewer.zip" size="2390866" stream="lockdown-viewer.zip" tmpFilename="/usr/tmp/CGItemp13685" user="QiLiao" version="2"

LockdownSourceCode 9 - 13 Nov 2008 - Main.AndrewBlaich

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Added:

>
>

DOWNLOAD latest package (updated 11/5/2008)
- lockdown-client.zip: agent installation package
- lockdown-server.zip: data processing and server installation package
- lockdown-viewer.zip: visualization tool package

Monitor: The Monitor is installed on each host within the network and is responsible for collecting the local context [netstat, ps, and lsof data] and sending it to the collecting server.
- Linux: exp_deploy.zip
  - new release, 7/23/2008:exp_deploy_pkg.zip

Line: 20 to 25

Backend Data Processing (Parser), Repository (Aggregator and File Server), Visualization tool (GUI client): Transition from SLQ database to Lockdown File System (LFS) as the backend to speed up data processing for a even larger scale of deployment.
- new release, 10/6/2008: Lockdown.zip

Deleted:

<
<

DOWNLOAD latest package (updated 11/5/2008)
- lockdown-client.zip: agent installation package
- lockdown-server.zip: data processing and server installation package
- lockdown-viewer.zip: visualization tool package

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"

LockdownSourceCode 8 - 06 Nov 2008 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 29 to 29

META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="Lockdown.zip" attr="" comment="most recent jar package for data processor, server and visualization client" date="1225680855" name="Lockdown.zip" path="Lockdown.zip" size="2391662" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp13660" user="QiLiao" version="2"
META FILEATTACHMENT	attachment="lockdown-client.zip" attr="" comment="agent installation package" date="1225905694" name="lockdown-client.zip" path="lockdown-client.zip" size="13404" stream="lockdown-client.zip" tmpFilename="/usr/tmp/CGItemp13205" user="QiLiao" version="1"

Changed:

<
<

META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processing and server installation package" date="1225929001" name="lockdown-server.zip" path="lockdown-server.zip" size="276462" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp13461" user="QiLiao" version="2"

>
>

META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processor and server package" date="1225994086" name="lockdown-server.zip" path="lockdown-server.zip" size="277130" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp15494" user="QiLiao" version="3"

META FILEATTACHMENT	attachment="lockdown-viewer.zip" attr="" comment="visualization tool package" date="1225929081" name="lockdown-viewer.zip" path="lockdown-viewer.zip" size="2390866" stream="lockdown-viewer.zip" tmpFilename="/usr/tmp/CGItemp13685" user="QiLiao" version="2"

LockdownSourceCode 7 - 05 Nov 2008 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 29 to 29

META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="Lockdown.zip" attr="" comment="most recent jar package for data processor, server and visualization client" date="1225680855" name="Lockdown.zip" path="Lockdown.zip" size="2391662" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp13660" user="QiLiao" version="2"
META FILEATTACHMENT	attachment="lockdown-client.zip" attr="" comment="agent installation package" date="1225905694" name="lockdown-client.zip" path="lockdown-client.zip" size="13404" stream="lockdown-client.zip" tmpFilename="/usr/tmp/CGItemp13205" user="QiLiao" version="1"

Changed:

<
<

META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processing and server installation package" date="1225905740" name="lockdown-server.zip" path="lockdown-server.zip" size="275827" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp13463" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="lockdown-viewer.zip" attr="" comment="visualization tool package" date="1225905829" name="lockdown-viewer.zip" path="lockdown-viewer.zip" size="2390783" stream="lockdown-viewer.zip" tmpFilename="/usr/tmp/CGItemp13526" user="QiLiao" version="1"

>
>

META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processing and server installation package" date="1225929001" name="lockdown-server.zip" path="lockdown-server.zip" size="276462" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp13461" user="QiLiao" version="2"
META FILEATTACHMENT	attachment="lockdown-viewer.zip" attr="" comment="visualization tool package" date="1225929081" name="lockdown-viewer.zip" path="lockdown-viewer.zip" size="2390866" stream="lockdown-viewer.zip" tmpFilename="/usr/tmp/CGItemp13685" user="QiLiao" version="2"

LockdownSourceCode 6 - 05 Nov 2008 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 20 to 20

Backend Data Processing (Parser), Repository (Aggregator and File Server), Visualization tool (GUI client): Transition from SLQ database to Lockdown File System (LFS) as the backend to speed up data processing for a even larger scale of deployment.
- new release, 10/6/2008: Lockdown.zip

Added:

>
>

DOWNLOAD latest package (updated 11/5/2008)
- lockdown-client.zip: agent installation package
- lockdown-server.zip: data processing and server installation package
- lockdown-viewer.zip: visualization tool package

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="Lockdown.zip" attr="" comment="most recent jar package for data processor, server and visualization client" date="1225680855" name="Lockdown.zip" path="Lockdown.zip" size="2391662" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp13660" user="QiLiao" version="2"

Added:

>
>

META FILEATTACHMENT	attachment="lockdown-client.zip" attr="" comment="agent installation package" date="1225905694" name="lockdown-client.zip" path="lockdown-client.zip" size="13404" stream="lockdown-client.zip" tmpFilename="/usr/tmp/CGItemp13205" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="lockdown-server.zip" attr="" comment="data processing and server installation package" date="1225905740" name="lockdown-server.zip" path="lockdown-server.zip" size="275827" stream="lockdown-server.zip" tmpFilename="/usr/tmp/CGItemp13463" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="lockdown-viewer.zip" attr="" comment="visualization tool package" date="1225905829" name="lockdown-viewer.zip" path="lockdown-viewer.zip" size="2390783" stream="lockdown-viewer.zip" tmpFilename="/usr/tmp/CGItemp13526" user="QiLiao" version="1"

LockdownSourceCode 5 - 03 Nov 2008 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 22 to 22

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"

Changed:

<
<

META FILEATTACHMENT	attachment="Lockdown.zip" attr="" comment="Lockdown File System, Parser, Aggregator, File Server and Visualization Client" date="1223303881" name="Lockdown.zip" path="Lockdown.zip" size="2391430" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp12321" user="QiLiao" version="1"

>
>

META FILEATTACHMENT	attachment="Lockdown.zip" attr="" comment="most recent jar package for data processor, server and visualization client" date="1225680855" name="Lockdown.zip" path="Lockdown.zip" size="2391662" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp13660" user="QiLiao" version="2"

LockdownSourceCode 4 - 06 Oct 2008 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 14 to 14

Repository/Parser/Viewer: The server processes data uploaded by the Monitors and manages the database (SQL) for storing the information. It contains analysis functions for extracting data patterns from the database. It also contains a GUI interface (viewer) to explore the data interactively and view the network activities in graphs in terms of hosts, users and applications.
- Server [JAVA]: expsicor_server.zip update coming

Changed:

<
<

- - new release, 7/23/2008:eXpiscor_viewer_pkg.zip

>
>

- - release, 7/23/2008:eXpiscor_viewer_pkg.zip

Added:

>
>

Backend Data Processing (Parser), Repository (Aggregator and File Server), Visualization tool (GUI client): Transition from SLQ database to Lockdown File System (LFS) as the backend to speed up data processing for a even larger scale of deployment.
- new release, 10/6/2008: Lockdown.zip

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"
META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"

Added:

>
>

META FILEATTACHMENT	attachment="Lockdown.zip" attr="" comment="Lockdown File System, Parser, Aggregator, File Server and Visualization Client" date="1223303881" name="Lockdown.zip" path="Lockdown.zip" size="2391430" stream="Lockdown.zip" tmpFilename="/usr/tmp/CGItemp12321" user="QiLiao" version="1"

LockdownSourceCode 3 - 24 Jul 2008 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Line: 14 to 14

Repository/Parser/Viewer: The server processes data uploaded by the Monitors and manages the database (SQL) for storing the information. It contains analysis functions for extracting data patterns from the database. It also contains a GUI interface (viewer) to explore the data interactively and view the network activities in graphs in terms of hosts, users and applications.
- Server [JAVA]: expsicor_server.zip update coming

Added:

>
>

- - new release, 7/23/2008:eXpiscor_viewer_pkg.zip

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"

Added:

>
>

META FILEATTACHMENT	attachment="eXpiscor_viewer_pkg.zip" attr="" comment="NEW release of server/parser/viewer package with instructions, jar file, and source codes" date="1216867198" name="eXpiscor_viewer_pkg.zip" path="eXpiscor_viewer_pkg.zip" size="6117786" stream="eXpiscor_viewer_pkg.zip" tmpFilename="/usr/tmp/CGItemp5928" user="QiLiao" version="1"

LockdownSourceCode 2 - 23 Jul 2008 - Main.QiLiao

Line: 1 to 1

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Monitor: The Monitor is installed on each host within the network and is responsible for collecting the local context [netstat, ps, and lsof data] and sending it to the collecting server.
- Linux: exp_deploy.zip

Added:

>
>

- - new release, 7/23/2008:exp_deploy_pkg.zip

- OS X 10.4: Lockdown_OSX_Monitor.tar
- Solaris: Lockdown_Solaris_Monitor.tar currently does not install into startup folders

Enforcer: The Enforcer is a Linux Security Module, LSM, that is responsible for enforcing policy within the kernel.
- Linux [2.6 kernel]: update coming soon

Changed:

<
<

Repository: The server processes data uploaded by the Monitors and manages the database (SQL) for storing the information. It contains analysis functions for extracting data patterns from the database.

>
>

Repository/Parser/Viewer: The server processes data uploaded by the Monitors and manages the database (SQL) for storing the information. It contains analysis functions for extracting data patterns from the database. It also contains a GUI interface (viewer) to explore the data interactively and view the network activities in graphs in terms of hosts, users and applications.

- Server [JAVA]: expsicor_server.zip update coming

Added:

>
>

META FILEATTACHMENT	attachment="exp_deploy_pkg.zip" attr="" comment="NEW release of agent installation package with instructions" date="1216843043" name="exp_deploy_pkg.zip" path="exp_deploy_pkg.zip" size="10252" stream="exp_deploy_pkg.zip" tmpFilename="/usr/tmp/CGItemp5973" user="QiLiao" version="1"

LockdownSourceCode 1 - 29 Nov 2007 - Main.AndrewBlaich

Line: 1 to 1

Added:

>
>

META TOPICPARENT	name="LockDown"

Lockdown Source Code

NOTE: all code is in constant development, newer versions will be posted as they are made available, use at your own risk!

Monitor: The Monitor is installed on each host within the network and is responsible for collecting the local context [netstat, ps, and lsof data] and sending it to the collecting server.
- Linux: exp_deploy.zip
- OS X 10.4: Lockdown_OSX_Monitor.tar
- Solaris: Lockdown_Solaris_Monitor.tar currently does not install into startup folders

Enforcer: The Enforcer is a Linux Security Module, LSM, that is responsible for enforcing policy within the kernel.
- Linux [2.6 kernel]: update coming soon

Repository: The server processes data uploaded by the Monitors and manages the database (SQL) for storing the information. It contains analysis functions for extracting data patterns from the database.
- Server [JAVA]: expsicor_server.zip update coming

Revision 12	r12 - 23 Oct 2009 - 03:54:36 - QiLiao
Revision 11	r11 - 09 Oct 2009 - 18:04:27 - QiLiao
Revision 10	r10 - 29 Apr 2009 - 21:17:50 - QiLiao
Revision 9	r9 - 13 Nov 2008 - 00:47:27 - AndrewBlaich
Revision 8	r8 - 06 Nov 2008 - 17:54:48 - QiLiao
Revision 7	r7 - 05 Nov 2008 - 23:51:24 - QiLiao
Revision 6	r6 - 05 Nov 2008 - 17:26:04 - QiLiao
Revision 5	r5 - 03 Nov 2008 - 02:54:17 - QiLiao
Revision 4	r4 - 06 Oct 2008 - 14:47:29 - QiLiao
Revision 3	r3 - 24 Jul 2008 - 02:44:36 - QiLiao
Revision 2	r2 - 23 Jul 2008 - 20:05:09 - QiLiao
Revision 1	r1 - 29 Nov 2007 - 20:38:02 - AndrewBlaich

Copyright © by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback

Syndicate this site RSS ATOM