VJ
Uploaded byveena jl
PPTX, PDF2,037 views

tripwire

This document summarizes a seminar presentation on Tripwire, an open source intrusion detection system (IDS). Tripwire monitors key files and directories on a system and detects any changes or modifications. It works by creating a database of file attributes when first installed and then comparing this baseline to the current system to detect any differences. If unauthorized changes are found, Tripwire reports these violations. It can be used to detect intrusions and malware on servers and network devices. Tripwire provides visibility into changes across an organization's infrastructure and helps restore systems to a known good state.

Embed presentation

Downloaded 90 times
Seminar on the topic.. “…..TRIPWIRE…..” ……AN OPEN SOURCE IDS….. PRESENTED BY, ASHALEKSHMI.S.S.
CONTENTS… WHAT IS TRIPWIRE??? BASIC PURPOSE. OPERATIONS.  ACTUAL WORKING. WHERE IS TRIPWIRE USED. TRIPWIRE FOR NETWORK DEVICES. APPLICATIONS. ADVANTAGES. LIMITATIONS. CONCLUSION.
WHAT IS TRIPWIRE ?  Reliable intrusion detection system.  Tool that checks to see what changes have been made in our system.  Pinpoints, notifies, determines the nature, and provides information on the changes on how to manage the change.  Mainly monitors the key attributes(like binary signature, size and other related data) of your files.
…..  Tripwire has a powerful feature which pinpoints the changes that has taken place, notifies the administrator of these changes, determines the nature of the changes and provide you with information you need for deciding how to manage the change. . All Tripwire installation can be centrally managed. Tripwire software’s cross platform functionality enables you to manage thousands of devices across your infrastructure.
BASIC PURPOSE.. Tripwire is a free and open-source software tool. It functions as a host-based intrusion detection system. Intrusion detection systems are of two main types, network-based (NIDS) and host-based (HIDS) intrusion detection systems. Intruders usually leave traces of their activities (changes in the system state).
BASIC PURPOSE… Tripwire looks for these by monitoring key attributes of files that should not change—including binary signatures, size, expected changes in size, etc.—and reporting its findings. While useful for detecting intrusions after the event, it can also serve many other purposes, such as integrity assurance, change management, policy compliance, and more
OPERATIONS TAKES PLACE… First, a baseline database is created storing the original attributes like binary values in registry. If the host computer is intruded, the intruder changes these values to go undetected. The Tripwire software constantly checks the system logs to check if any unauthorized changes were made.
…. If so, then it reports to the user. User can then undo those changes to revert the system back to the original state.
TRIPWIRE MANAGERS.. There are two types of Tripwire Manager Active Tripwire Manager Passive Tripwire Manager  This active Tripwire Manager gives a user the ability to update the database, schedule integrity checks, update and distribute policy and configuration files and view integrity reports.
…. The passive mode only allows to view the status of the machines and integrity reports.
ACTUAL WORKING…  Install Tripwire and customize the policy file.  Install the Tripwire software into the system and then specify the files to be checked by writing the policy files. Using the version 4.0 writing the policy file is made very easy.  Initialize the Tripwire database .  The database is initialized with the important key attribute in the file to be checked. Build database of critical system files to monitor based on the contents of the new, signed Tripwire policy file.
Actual working…  Run the integrity check .  Compare the newly created Tripwire database with the actual system files, looking for missing or altered files, according to the integrity check timing specified by in the policy file for different files that are to be monitored.  Examine the Tripwire report file .  View the Tripwire report file to note any integrity violations.
……  If unauthorized integrity violations occur, take appropriate security measures .  If monitored files have been altered inappropriately, the system administrator have to take immediate action, you can either replace the original files from backup copies reinstall the program, or completely reinstall the operating system.  If the file alterations were valid, verify and update the Tripwire database file.
….. If the changes made to monitor files are intentional, edit Tripwire’s database file to ignore those changes in subsequent report.  If the policy file fails verification, update the Tripwire policy file .  To change the list of files Tripwire monitors or how it treats integrity violations, update the supplied policy file, regenerate a signed copy, and update the Tripwire database.
WHERE IS TRIPWIRE USED ? Tripwire for Servers(TS) is software used by servers. Can be installed on any server that needs to be monitored for any changes. Typical servers include mail servers, web servers, firewalls, transaction server, development server. It is used for network devices like routers, switches, firewall, etc.
….. If any of these devices are tampered with, it can lead to huge losses for the Organization that supports the network.
TRIPWIRE FOR NETWORK DEVICE  Tripwire for network devices maintains a log of all significant actions including adding and deleting nodes, rules, tasks and user accounts.  Automatic notification of changes to your routers, switches and firewalls.  Automatic restoration of critical network devices.  Heterogeneous support for today’s most commonly used network devices.
APPLICATIONS. Tripwire for Servers(used as software). Tripwire for Host Based Intrusion Detection System(HIDS) and also for Network Based Intrusion Detection System (NIDS). Tripwire for Network Devices like Routers, Switches etc.
ADVANTAGES… Increase security: - Immediately detects and pinpoints unauthorized change. Instill Accountability :- Tripwire identifies and reports the sources of change. Gain Visibility:- Tripwire software provides a centralized view of changes across the enterprise infrastructure and supports multiple devices from multiple vendors
ADVANTAGES.. Ensure Availability:- Tripwire software reduces troubleshooting time, enabling rapid discovery and recovery. Enables the fastest possible restoration back to a desired, good state
LIMITATIONS.. Ineffective when applied to frequently changing files. Higher learning curve to install, edit, and maintain the software. Cost Effective
CONCLUSION.. Although having some limitations ;Tripwire is a reliable intrusion detection system. It is a software that can be installed in any type of system where damaged files are to be detected. The main attractive feature of this system is that the software generates a report about which file have been violated, when the file have been violated and also what in the files have been changed. To some extend it also helps to detect who made the changes. New versions of Tripwire is under research and development.
REFERENCES… Tripwire http://www.tripwire.com Gene H. Kim and Eugene H. Spafford, 1994. Experiences with Tripwire: Using Integrity checkers for Intrusion Detection, Purdue Technical Report CSD-TR- 93-071, Coast Laboratory, Department of Computer Sciences, Purdue University.
THANK YOU………

More Related Content

PPT
Network management
byMohd Arif
 
PPTX
Tripwire.ppt
byishaque k
 
PPTX
Cloud computing pricing models
byHadi Fadlallah
 
PPTX
Cloud security and security architecture
byVladimir Jirasek
 
PPT
Security Issues of Cloud Computing
byFalgun Rathod
 
PPTX
Chap 3 infrastructure as a service(iaas)
byRaj Sarode
 
PPT
System models for distributed and cloud computing
bypurplesea
 
PPTX
Firewall Design and Implementation
byajeet singh
 
Network management
byMohd Arif
 
Tripwire.ppt
byishaque k
 
Cloud computing pricing models
byHadi Fadlallah
 
Cloud security and security architecture
byVladimir Jirasek
 
Security Issues of Cloud Computing
byFalgun Rathod
 
Chap 3 infrastructure as a service(iaas)
byRaj Sarode
 
System models for distributed and cloud computing
bypurplesea
 
Firewall Design and Implementation
byajeet singh
 

What's hot

PPTX
Introduction to Cloud Security
byLegal Services National Technology Assistance Project (LSNTAP)
 
PPTX
Cloud security Presentation
byAjay p
 
PPTX
Cloud computing
bypgayatrinaidu
 
PPTX
Eucalyptus cloud computing
byRahul Rana
 
PDF
VSS-1.pdf
byRiyaBatool
 
PDF
Cloud Computing Architecture
byAnimesh Chaturvedi
 
PPTX
Public cloud
byDr.Neeraj Kumar Pandey
 
PPTX
Proxy Server: A Comprehensive Guide
byHTS Hosting
 
PPT
Unit 4
byRavi Kumar
 
PDF
Network monitoring tools
byChathurangi Shyalika
 
PDF
Unit 2 Smart Objects _IOT by Dr.M.K.Jayanthi.pdf
byJayanthi Kannan MK
 
PPTX
System and network administration network services
byUc Man
 
PPT
Evolution of the cloud
bysagaroceanic11
 
PPT
Active directory
bydeshvikas
 
PPTX
Zigbee Presentation
byMaathu Michael
 
PPTX
Introduction to Network and System Administration
byDuressa Teshome
 
PPT
Microsoft Active Directory
bythebigredhemi
 
PPTX
Social Cloud: Cloud Computing in Social Networks
bySimon Caton
 
PPTX
Cloud Computing ppt
byOECLIB Odisha Electronics Control Library
 
PPTX
Sdn ppt
byPallavi Chhikara
 
Introduction to Cloud Security
byLegal Services National Technology Assistance Project (LSNTAP)
 
Cloud security Presentation
byAjay p
 
Cloud computing
bypgayatrinaidu
 
Eucalyptus cloud computing
byRahul Rana
 
VSS-1.pdf
byRiyaBatool
 
Cloud Computing Architecture
byAnimesh Chaturvedi
 
Public cloud
byDr.Neeraj Kumar Pandey
 
Proxy Server: A Comprehensive Guide
byHTS Hosting
 
Unit 4
byRavi Kumar
 
Network monitoring tools
byChathurangi Shyalika
 
Unit 2 Smart Objects _IOT by Dr.M.K.Jayanthi.pdf
byJayanthi Kannan MK
 
System and network administration network services
byUc Man
 
Evolution of the cloud
bysagaroceanic11
 
Active directory
bydeshvikas
 
Zigbee Presentation
byMaathu Michael
 
Introduction to Network and System Administration
byDuressa Teshome
 
Microsoft Active Directory
bythebigredhemi
 
Social Cloud: Cloud Computing in Social Networks
bySimon Caton
 
Cloud Computing ppt
byOECLIB Odisha Electronics Control Library
 
Sdn ppt
byPallavi Chhikara
 

Viewers also liked

DOC
TRIP WIRE
bypraveen369
 
PPTX
Tripwire
byAnang Sunny
 
PPTX
Tripwire Adaptive Threat Protection
byTripwire
 
PPTX
Tripwire
byDhananjay Aloorkar
 
PDF
Configuración de tripwire
byRosariio92
 
DOC
Fitsum ristu lakew tripwire for intrusion detection
byFITSUM RISTU LAKEW
 
PDF
Procesos metacognitivos
byHUGO JESUS CUTIRI CHILLIHUANI
 
PPTX
Habilidadesmetacognitivas estrategias
byipradap
 
PDF
5 mat 1ºbim
bySandra Castro martins
 
PPTX
Taller de Investigacion-tarea 2-Análisis CU
byAntonio Villafuerte Ruiz
 
PDF
PMP Equipment List
byJim Wu
 
DOC
08 ro exemple de buna practica
byLaura Gratiela Anton
 
PDF
Haetham Resume
byeng_haetham
 
PDF
Repubblicanesimo, republicanism, republikanismus, républicanisme, republicani...
byUNIVERSITY OF COIMBRA
 
PPTX
Dakwah
byaayramdantkj
 
PDF
Seminar report
byashwani kumar
 
PDF
担当プロダクトのDBをまるっとリプレイスするためにやったこと
byShinya Takara
 
PPT
Diamond chip
byPRADEEP Cheekatla
 
PPT
Trademark classes
byGalaxy4u Legal Consulting Pune
 
TRIP WIRE
bypraveen369
 
Tripwire
byAnang Sunny
 
Tripwire Adaptive Threat Protection
byTripwire
 
Tripwire
byDhananjay Aloorkar
 
Configuración de tripwire
byRosariio92
 
Fitsum ristu lakew tripwire for intrusion detection
byFITSUM RISTU LAKEW
 
Procesos metacognitivos
byHUGO JESUS CUTIRI CHILLIHUANI
 
Habilidadesmetacognitivas estrategias
byipradap
 
5 mat 1ºbim
bySandra Castro martins
 
Taller de Investigacion-tarea 2-Análisis CU
byAntonio Villafuerte Ruiz
 
PMP Equipment List
byJim Wu
 
08 ro exemple de buna practica
byLaura Gratiela Anton
 
Haetham Resume
byeng_haetham
 
Repubblicanesimo, republicanism, republikanismus, républicanisme, republicani...
byUNIVERSITY OF COIMBRA
 
Dakwah
byaayramdantkj
 
Seminar report
byashwani kumar
 
担当プロダクトのDBをまるっとリプレイスするためにやったこと
byShinya Takara
 
Diamond chip
byPRADEEP Cheekatla
 
Trademark classes
byGalaxy4u Legal Consulting Pune
 

Similar to tripwire

PPTX
Tripwire ppt
byOECLIB Odisha Electronics Control Library
 
PPTX
Presentation
byVijayeandra Parthepan
 
PDF
20 Trip-Wire-.pdf
byG Srinu
 
PDF
20 Trip-Wire-.pdf
byG Srinu
 
PDF
Tripwire enterprise 87_datasheet
byDevaraj Sl
 
PDF
The Security Of Information Security
byRachel Phillips
 
PDF
CNIT 152: 3 Pre-Incident Preparation
bySam Bowne
 
PPTX
NSM INTRUSION DETECTION SYSTEM A COMPREHENSIVE GUIDE
bysamsanjai82
 
DOCX
Network and web security
byNitesh Saitwal
 
PPTX
The Internal Signs of Compromise
byFireEye, Inc.
 
PDF
CNIT 121: 3 Pre-Incident Preparation
bySam Bowne
 
PPTX
LIS3353 SP12 Week 9
byAmanda Case
 
PPTX
Using Assessment Tools on ICS (English)
byDigital Bond
 
PDF
Mim Attack Essay
byHaley Johnson
 
PDF
Intrusion Detection System Project Report
byRaghav Bisht
 
PDF
2019-09-11 Workshop incident response n handling honeynet Universitas Indonesia
byIGN MANTRA
 
PDF
Packet capture and network traffic analysis
byCARMEN ALCIVAR
 
PDF
Network security monitoring with open source tools
byterriert
 
PPTX
First Responders Course - Session 6 - Detection Systems [2004]
byPhil Huggins FBCS CITP
 
PPTX
Cyber security tutorial1
bysweta dargad
 
Tripwire ppt
byOECLIB Odisha Electronics Control Library
 
Presentation
byVijayeandra Parthepan
 
20 Trip-Wire-.pdf
byG Srinu
 
20 Trip-Wire-.pdf
byG Srinu
 
Tripwire enterprise 87_datasheet
byDevaraj Sl
 
The Security Of Information Security
byRachel Phillips
 
CNIT 152: 3 Pre-Incident Preparation
bySam Bowne
 
NSM INTRUSION DETECTION SYSTEM A COMPREHENSIVE GUIDE
bysamsanjai82
 
Network and web security
byNitesh Saitwal
 
The Internal Signs of Compromise
byFireEye, Inc.
 
CNIT 121: 3 Pre-Incident Preparation
bySam Bowne
 
LIS3353 SP12 Week 9
byAmanda Case
 
Using Assessment Tools on ICS (English)
byDigital Bond
 
Mim Attack Essay
byHaley Johnson
 
Intrusion Detection System Project Report
byRaghav Bisht
 
2019-09-11 Workshop incident response n handling honeynet Universitas Indonesia
byIGN MANTRA
 
Packet capture and network traffic analysis
byCARMEN ALCIVAR
 
Network security monitoring with open source tools
byterriert
 
First Responders Course - Session 6 - Detection Systems [2004]
byPhil Huggins FBCS CITP
 
Cyber security tutorial1
bysweta dargad
 

Recently uploaded

PPTX
West Hatch High School: Year 9 Art Course
byWestHatch
 
PDF
Information about Presentation strategies
bymansivaja18126
 
PPTX
Drugs modulating serotonergic system.pptx
byNorman Arockiaraj G
 
PPTX
Biological source, chemical constituents, and therapeutic efficacy of the fol...
bySai Meer College of Pharmacy
 
PPTX
'Colonial Mentality and Social Identity in Karma by Khushwant Singh'
byKrishnarajsinh Parmar
 
PPTX
TLE 8 W1 Q4 D3.pptx ELECTRICAL SYMBOLS ELECTRONIC
byraquelanaaltres1
 
PDF
Risks and opportunities of artificial intelligence in education: A critical view
byYannis
 
PPTX
The night at deoli - Ruskin bond's story of first love
byrajibhammar4
 
PDF
West Hatch High School - GCSE Media Specification
byWestHatch
 
PDF
Darwinism: Theory of Natural Selection and Origin of Species
byIPGDCWA,NAMPALLY
 
PPTX
Central Line Associated Bloodstream Infection
bynabinabhaila40
 
PPT
West Hatch High School - GCSE History Option
byWestHatch
 
PPTX
West Hatch High School - GCSE Art Presentation
byWestHatch
 
PDF
Chapter 05 Drug Acting on CNS Sedatives & Hypnotics | Antipsychotics.pdf
bySandeshSul
 
PDF
West Hatch High School - GCSE French Specification
byWestHatch
 
PPTX
COMMUNICATION ITS PROCESS ELEMENTS & BARRIER .pptx
byPoojaSen20
 
PDF
CAM, DHT11, GAS, ESP32, FLAME, IR, TEMP, LCD, PIR, SOIL, SOUND, RELAY, TURBID...
byPravinDhanrao3
 
PPTX
Master of Punjabi Short Story "kartar singh duggal
bybhautikbharwad4
 
PDF
Sharad Bisen_Soil Sterilization_Objectives_ICAR Course, Sixth Dean Committee.pdf
bybisensharad
 
PPTX
West Hatch High School - GCSE Media Studies
byWestHatch
 
West Hatch High School: Year 9 Art Course
byWestHatch
 
Information about Presentation strategies
bymansivaja18126
 
Drugs modulating serotonergic system.pptx
byNorman Arockiaraj G
 
Biological source, chemical constituents, and therapeutic efficacy of the fol...
bySai Meer College of Pharmacy
 
'Colonial Mentality and Social Identity in Karma by Khushwant Singh'
byKrishnarajsinh Parmar
 
TLE 8 W1 Q4 D3.pptx ELECTRICAL SYMBOLS ELECTRONIC
byraquelanaaltres1
 
Risks and opportunities of artificial intelligence in education: A critical view
byYannis
 
The night at deoli - Ruskin bond's story of first love
byrajibhammar4
 
West Hatch High School - GCSE Media Specification
byWestHatch
 
Darwinism: Theory of Natural Selection and Origin of Species
byIPGDCWA,NAMPALLY
 
Central Line Associated Bloodstream Infection
bynabinabhaila40
 
West Hatch High School - GCSE History Option
byWestHatch
 
West Hatch High School - GCSE Art Presentation
byWestHatch
 
Chapter 05 Drug Acting on CNS Sedatives & Hypnotics | Antipsychotics.pdf
bySandeshSul
 
West Hatch High School - GCSE French Specification
byWestHatch
 
COMMUNICATION ITS PROCESS ELEMENTS & BARRIER .pptx
byPoojaSen20
 
CAM, DHT11, GAS, ESP32, FLAME, IR, TEMP, LCD, PIR, SOIL, SOUND, RELAY, TURBID...
byPravinDhanrao3
 
Master of Punjabi Short Story "kartar singh duggal
bybhautikbharwad4
 
Sharad Bisen_Soil Sterilization_Objectives_ICAR Course, Sixth Dean Committee.pdf
bybisensharad
 
West Hatch High School - GCSE Media Studies
byWestHatch
 

tripwire

  • 1.
    Seminar on thetopic.. “…..TRIPWIRE…..” ……AN OPEN SOURCE IDS….. PRESENTED BY, ASHALEKSHMI.S.S.
  • 2.
    CONTENTS… WHAT IS TRIPWIRE??? BASICPURPOSE. OPERATIONS.  ACTUAL WORKING. WHERE IS TRIPWIRE USED. TRIPWIRE FOR NETWORK DEVICES. APPLICATIONS. ADVANTAGES. LIMITATIONS. CONCLUSION.
  • 3.
    WHAT IS TRIPWIRE?  Reliable intrusion detection system.  Tool that checks to see what changes have been made in our system.  Pinpoints, notifies, determines the nature, and provides information on the changes on how to manage the change.  Mainly monitors the key attributes(like binary signature, size and other related data) of your files.
  • 4.
    …..  Tripwire hasa powerful feature which pinpoints the changes that has taken place, notifies the administrator of these changes, determines the nature of the changes and provide you with information you need for deciding how to manage the change. . All Tripwire installation can be centrally managed. Tripwire software’s cross platform functionality enables you to manage thousands of devices across your infrastructure.
  • 5.
    BASIC PURPOSE.. Tripwire isa free and open-source software tool. It functions as a host-based intrusion detection system. Intrusion detection systems are of two main types, network-based (NIDS) and host-based (HIDS) intrusion detection systems. Intruders usually leave traces of their activities (changes in the system state).
  • 6.
    BASIC PURPOSE… Tripwire looksfor these by monitoring key attributes of files that should not change—including binary signatures, size, expected changes in size, etc.—and reporting its findings. While useful for detecting intrusions after the event, it can also serve many other purposes, such as integrity assurance, change management, policy compliance, and more
  • 7.
    OPERATIONS TAKES PLACE… First,a baseline database is created storing the original attributes like binary values in registry. If the host computer is intruded, the intruder changes these values to go undetected. The Tripwire software constantly checks the system logs to check if any unauthorized changes were made.
  • 8.
    …. If so, thenit reports to the user. User can then undo those changes to revert the system back to the original state.
  • 9.
    TRIPWIRE MANAGERS.. There aretwo types of Tripwire Manager Active Tripwire Manager Passive Tripwire Manager  This active Tripwire Manager gives a user the ability to update the database, schedule integrity checks, update and distribute policy and configuration files and view integrity reports.
  • 10.
    …. The passive modeonly allows to view the status of the machines and integrity reports.
  • 11.
    ACTUAL WORKING…  InstallTripwire and customize the policy file.  Install the Tripwire software into the system and then specify the files to be checked by writing the policy files. Using the version 4.0 writing the policy file is made very easy.  Initialize the Tripwire database .  The database is initialized with the important key attribute in the file to be checked. Build database of critical system files to monitor based on the contents of the new, signed Tripwire policy file.
  • 12.
    Actual working…  Runthe integrity check .  Compare the newly created Tripwire database with the actual system files, looking for missing or altered files, according to the integrity check timing specified by in the policy file for different files that are to be monitored.  Examine the Tripwire report file .  View the Tripwire report file to note any integrity violations.
  • 13.
    ……  If unauthorizedintegrity violations occur, take appropriate security measures .  If monitored files have been altered inappropriately, the system administrator have to take immediate action, you can either replace the original files from backup copies reinstall the program, or completely reinstall the operating system.  If the file alterations were valid, verify and update the Tripwire database file.
  • 14.
    ….. If the changesmade to monitor files are intentional, edit Tripwire’s database file to ignore those changes in subsequent report.  If the policy file fails verification, update the Tripwire policy file .  To change the list of files Tripwire monitors or how it treats integrity violations, update the supplied policy file, regenerate a signed copy, and update the Tripwire database.
  • 15.
    WHERE IS TRIPWIREUSED ? Tripwire for Servers(TS) is software used by servers. Can be installed on any server that needs to be monitored for any changes. Typical servers include mail servers, web servers, firewalls, transaction server, development server. It is used for network devices like routers, switches, firewall, etc.
  • 16.
    ….. If any ofthese devices are tampered with, it can lead to huge losses for the Organization that supports the network.
  • 17.
    TRIPWIRE FOR NETWORKDEVICE  Tripwire for network devices maintains a log of all significant actions including adding and deleting nodes, rules, tasks and user accounts.  Automatic notification of changes to your routers, switches and firewalls.  Automatic restoration of critical network devices.  Heterogeneous support for today’s most commonly used network devices.
  • 18.
    APPLICATIONS. Tripwire for Servers(usedas software). Tripwire for Host Based Intrusion Detection System(HIDS) and also for Network Based Intrusion Detection System (NIDS). Tripwire for Network Devices like Routers, Switches etc.
  • 19.
    ADVANTAGES… Increase security: -Immediately detects and pinpoints unauthorized change. Instill Accountability :- Tripwire identifies and reports the sources of change. Gain Visibility:- Tripwire software provides a centralized view of changes across the enterprise infrastructure and supports multiple devices from multiple vendors
  • 20.
    ADVANTAGES.. Ensure Availability:- Tripwiresoftware reduces troubleshooting time, enabling rapid discovery and recovery. Enables the fastest possible restoration back to a desired, good state
  • 21.
    LIMITATIONS.. Ineffective when appliedto frequently changing files. Higher learning curve to install, edit, and maintain the software. Cost Effective
  • 22.
    CONCLUSION.. Although having somelimitations ;Tripwire is a reliable intrusion detection system. It is a software that can be installed in any type of system where damaged files are to be detected. The main attractive feature of this system is that the software generates a report about which file have been violated, when the file have been violated and also what in the files have been changed. To some extend it also helps to detect who made the changes. New versions of Tripwire is under research and development.
  • 23.
    REFERENCES… Tripwire http://www.tripwire.com Gene H. Kimand Eugene H. Spafford, 1994. Experiences with Tripwire: Using Integrity checkers for Intrusion Detection, Purdue Technical Report CSD-TR- 93-071, Coast Laboratory, Department of Computer Sciences, Purdue University.
  • 25.