Logo

Linking you to the Technology of the Future

Serving Hillsborough, Pasco and Pinellas Counties Phone: 727-939-1000
GFI System Integrity Monitor
Main Menu  
Home
Up		  

 

What is GFI LANguard System Integrity Monitor?
GFI LANguard System Integrity Monitor (S.I.M.) is a utility that provides intrusion detection by checking whether files have been changed, added or deleted on a Windows 2000/XP system. If this happens, it alerts the administrator by email. Because hackers need to change certain system files to gain access, this FREEWARE utility provides a great means to identify any servers that are open to attack.

Why use a system integrity monitor?
A system integrity monitor is an essential tool in scanning your systems for intrusions. The following are the main benefits of using a system integrity monitor: 

Detect intruders on a system
Because it is very difficult to compromise a system without altering a system file, a system integrity monitor is a good way to detect a system intrusion.
 
Gather evidence
GFI LANguard S.I.M. allows you to gather evidence of the intrusion. This may help in a criminal investigation. It will also help you to learn about hackers' intentions.
 
Find source of intrusion
GFI LANguard S.I.M. can also help in determining what in the system may have caused a system compromise.
 
System recovery
GFI LANguard S.I.M. logs exactly which files have changed, allowing you to relatively easily restore the system to its original state. Damage from viruses can easily be detected and all of the infected files identified quickly.
 
Watch your web site
You can configure GFI LANguard S.I.M. to monitor not only operating system files but also your images, cgi programs, active server pages and HTML for unauthorized changes. If your system is breached and your web site defaced, GFI LANguard S.I.M. will notify you, enabling you to take immediate action.
 

GFI LANguard System Integrity Monitor Features
How does GFI LANguard S.I.M. work?
GFI LANguard S.I.M. scans your system for important system files, computes an MD 5 checksum for every important system and files this in a database. At scheduled intervals, GFI LANguard S.I.M. scans the list of monitored files, computes another MD 5 checksum and tests the current value against the stored value to determine if the file has been modified. If it detects a change, it notifies the system administrator via email, and logs the occurrence in the security event log.

Secure file integrity checking using MD5
MD 5, or Message Digest Algorithm, is a standard for creating fingerprints of files. It is a one-way hash algorithm that takes any length of data and produces a 128 bit "fingerprint" or "message digest".

Highly efficient process
GFI LANguard S.I.M.'s file integrity checking runs in the background as a service.

Create multiple scan jobs
GFI LANguard S.I.M. allows you to create multiple scan jobs, so that you can monitor different types of files at different intervals.

Email alerts
GFI LANguard S.I.M. can send alerts to different people/email addresses for different scan jobs.

Web vandal detection
GFI LANguard S.I.M. scans web site pages for changes, and can therefore detect and notify you of web page vandalism immediately.

Freeware
As it is freeware, GFI LANguard S.I.M. is available for all.

Logs file changes to Windows event log
File/system changes are logged to the Windows security event log, allowing you to easily view a list of file changes over time.

Tamperproof
Because GFI LANguard S.I.M. logs file changes to the Windows security event log you have an undeletable log of changes to your system files.

Integration with GFI LANguard S.E.L.M.
GFI LANguard Security Event Log Monitor (S.E.L.M.) can detect events created by GFI LANguard S.I.M. and can archive these events to a database. This allows you to consolidate system changes on multiple servers and workstations to one database for centralized auditing.

Reviews
Great download - CramSession's NetAdminWeekly named GFI LANguard System Integrity Monitor "download of the week". The newsletter said: "One of the best ways to determine if you've been hacked is by checking for changed files. A new freeware utility from GFI Software called LANguard System Integrity Monitor does just that. The application can monitor system files, Web site files, any files you want to watch for changes. It computes an MD5 hash for the selected files and then scans for changes on a regular basis. If there is a change, you are notified via email. The app runs on Windows 2000 and Windows XP and best of all, it's FREE."
- CramSession, December 2002
A handy freebie! - Lockergnome has described GFI LANguard S.I.M. as "a rather handy system monitoring utility that doesn't cost you a nickel". The GnomeREPORT said: "You can completely customize the scanning to include or exclude any files you choose so you're keenly aware of when something changes unexpectedly. You can even add custom scan jobs to run at the times you specify so you can watch certain things more closely than others. For example, I might have the service checking the C:\Windows directory every 24 hours, while looking over the web server directory every hour."
- Lockergnome.com, 12 December 2002

Home | Up | Contact Us | Privacy Policy | Partners

© Copyright 2005 Link Tech Computer Services. All Rights Reserved.