NetXMS : A monitoring system with a modular architecture

NetXMS is a monitoring system with a modular architecture. It can be used for monitoring an entire IT infrastructure, starting with SNMP-capable hardware (like switches and routers) and ending with applications on servers. The system has a three-tier architecture; the information is collected by monitoring agents (either its own agents or SNMP agents) and delivered to the monitoring server for processing and storing, where it can be accessed by using the management console. It features centralized configuration and centralized agent upgrades.

• Licenses : GPL
• Operating Systems : POSIX, Windows, Windows CE
• Implementation : C++

Likewise Open : joins Linux, Unix, & Mac OS machines to Microsoft Active Directory and securely authenticates users with their domain credentiials

Likewise Open is an application that joins Linux, Unix, and Mac OS machines to Microsoft Active Directory and securely authenticates users with their domain credentials. Features include: joining non-Windows systems to Active Directory domains in a single step from the command line or from a GUI; authenticating users with a single user name and password; enforcing the same password policies for all platforms; supporting multiple forests with one-way and two-way cross forest trusts; caching credentials in case your domain controller goes down; and providing single sign-on for SSH and Putty. It does not require Active Directory schema changes for installation.

• Licenses : GPL, GPLv2
• Operating Systems : Mac OS X, Windows, Unix

check_ssl_cert : A Nagios plugin to check X.509 certificates

check_ssl_cert is a Nagios plugin to check X.509 certificates. It checks if the server is running and delivers a valid certificate. It also checks if the CA matches a given pattern, and checks the validity.

• Licenses : GPLv2
• Operating Systems : Mac OS X, Unix
• Implementation : Unix Shell, bash

sinfo : A monitoring tool that uses a broadcast scheme to distribute information on the status of each computer on your local network

sinfo is a monitoring tool that uses a broadcast scheme to distribute information on the status of each computer on your local network. It supports CPU, memory usage, network load, and information about the top 5 processes on each computer. sinfo uses ncurses to display the information in an attractive manner.

• Licenses : GPL
• Operating Systems : POSIX, Linux, Solaris, BSD, FreeBSD

Downtimed : A program that monitors operating system downtime, uptime, shutdowns, and crashes and records any findings

Downtimed is a program that monitors operating system downtime, uptime, shutdowns, and crashes and records any findings either to the system log or to a separately specified log file. At OS startup it logs information about previous downtime. It then periodically updates a time stamp file on the disk, which is used to determine the approximate time when the system was last up and running. During a graceful system shutdown, it records a time stamp in another file.

• Licenses : BSD Revised
• Operating Systems : Linux, FreeBSD, BSD
• Implementation : C

Wireshark : A network protocol analyzer, or "packet sniffer", that lets you capture and interactively browse the contents of network frames

Wireshark (formerly Ethereal) is a network protocol analyzer, or "packet sniffer", that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality packet analyzer for Unix, and the most useful packet analyzer on any platform.

• Licenses : GPL
• Operating Systems : Mac OS X, Windows, POSIX
• Implementation : C

Vyatta : A Linux-based routing and security distribution

Vyatta is a Linux-based routing and security distribution. It is meant to deliver a flexible, affordable alternative to Cisco 1800 through 7200 series routers. Vyatta is also a great virtual router, virtual firewall, virtual security solution for VMware, Xen, XenServer, and KVM virtualization projects.

• Licenses : GPLv2
• Implementation : C, C++

Service Guardian aims to protect servers against various things such as resource exhaustion and connection floods

Service Guardian aims to protect servers against various things such as resource exhaustion and connection floods. It can measure the number of connections to servers' ports and, after a grace time period, compares and sees if the host is still in violation of the specified settings. If a host is in violation of the settings, it will be filtered out and dropped via netfilter/iptables.

• Licenses : GPLv3
• Operating Systems : POSIX, Linux
• Implementation : C

Sshguard monitors services through their logging activit

Sshguard monitors services through their logging activity. It reacts to messages about dangerous activity by blocking the source address with the local firewall. Sshguard employs a clever parser that can transparently recognize several logging formats at once (syslog, syslog-ng, metalog, multilog, raw messages), and detects attacks for many services out of the box, including SSH, several ftpds, and dovecot. It can operate all the major firewalling systems, and features support for IPv6, whitelisting, suspension, and log message authentication.

Licenses	BSD Revised
Operating Systems	POSIX
Implementation	C

Pandora FMS : A monitoring system for big IT environments

Pandora FMS is a monitoring system for big IT environments. It uses remote tests or local agents to grab information. It supports several platforms and supports multiple setups in HA environments.

• Licenses : GPLv2
• Operating Systems : GNU/Linux, Linux, AIX, HP-UX, Solaris, Windows
• Implementation : Perl, PHP, MySQL, shell script, AJAX; JQUERY, AJAX, C++

Likewise Open : Joins Linux, Unix, and Mac OS machines to Microsoft Active Directory and securely authenticates users with their domain credentials

Likewise Open is an application that joins Linux, Unix, and Mac OS machines to Microsoft Active Directory and securely authenticates users with their domain credentials. Features include: joining non-Windows systems to Active Directory domains in a single step from the command line or from a GUI; authenticating users with a single user name and password; enforcing the same password policies for all platforms; supporting multiple forests with one-way and two-way cross forest trusts; caching credentials in case your domain controller goes down; and providing single sign-on for SSH and Putty. It does not require Active Directory schema changes for installation.

• Licenses : GPL GPLv2
• Operating Systems : Mac OS X, Windows, Unix

ClamFS : A FUSE-based user-space file system for Linux with on-access anti-virus file scanning through the clamd daemon

ClamFS is a FUSE-based user-space file system for Linux with on-access anti-virus file scanning through the clamd daemon.

• Licenses : GPL
• Operating Systems : POSIX, Linux
• Implementation : C++

Xplico : An IP traffic decoder that extracts data from an Internet traffic capture

Xplico is an IP traffic decoder that extracts data from an Internet traffic capture. From a pcap file, it can extracts each email (POP, IMAP, and SMTP protocols), all HTTP content, VoIP calls (SIP), and so on. It isn't a packet sniffer or a network protocol analyzer, but rather an IP/Internet traffic decoder or network forensic analysis tool (NFAT).

• Licenses : GPLv2
• Operating Systems : POSIX, Linux
• Implementation : C, SQL, Python, PHP, AJAX

check_mysql_health : A plugin for Nagios that allows you to monitor a MySQL database

check_mysql_health is a plugin for Nagios that allows you to monitor a MySQL database. Among the list of metrics are time to login, index usage, bufferpool hit rate, query cache hit rate, slow queries, temp tables on disk, table cache hit rate, connected threads, and many more. Requirements are either a DBD::mysql Perl module or a MySQL client package.

Sshguard monitors services through their logging activity

Sshguard monitors services through their logging activity. It reacts to messages about dangerous activity by blocking the source address with the local firewall. Sshguard employs a clever parser that can transparently recognize several logging formats at once (syslog, syslog-ng, metalog, multilog, raw messages), and detects attacks for many services out of the box, including SSH, several ftpds, and dovecot. It can operate all the major firewalling systems, and features support for IPv6, whitelisting, suspension, and log message authentication.

• Licenses : BSD Revised
• Operating Systems : POSIX
• Implementation : C

Endian Firewall : An all-in-on Linux security distribution that turns any system into a full-featured security appliance

Endian Firewall is an all-in-on Linux security distribution that turns any system into a full-featured security appliance. It features a stateful packet inspection firewall, application-level proxies for various protocols (HTTP, POP3, SMTP), anti-virus support, virus and spam filtering for email traffic (POP and SMTP), content filtering of Web traffic, and a "hassle free" VPN system based on OpenVPN.

• Licenses : GPL
• Implementation : Perl, Python, C

n2 : A client/server system for transmitting forensic snapshots from a number of hosts to a receiver node

n2 is a client/server system for transmitting forensic snapshots from a number of hosts to a receiver node. This receiver collects statistics and is able to present an overview of the current and historical situation on a server. n2 provides a robust solution for real-time monitoring, optimizing performance, and analyzing crashes.

• Licenses : GPLv3
• Operating Systems : Linux
• Implementation : C, C++, AJAX, JavaScript

collectd : A small and modular daemon which collects system information periodically and provides means to store the values

collectd is a small and modular daemon which collects system information periodically and provides means to store the values. Included in the distribution are numerous plug-ins for collecting CPU, disk, and memory usage, network interface and DNS traffic, network latency, database statistics, and much more. Custom statistics can easily be added in a number of ways, including execution of arbitrary programs and plug-ins written in Perl. Advanced features include a powerful network code to collect statistics for entire setups and SNMP integration to query network equipment.

• Licenses : GPL
• Operating Systems : Mac OS X, POSIX, Solaris, Linux
• Implementation : C