Coworkers at the University of Tel Aviv have presented a prototype for a new host-based intrusion detection system (HIDS) for Linux. Named Korset, it uses static code analysis and promises zero failures.

You don't need expensive proprietary tools to practice the craft of computer forensics.

A forensics expert explains how to extract interesting details from a confiscated Windows hard disk using standard Linux tools.

Once you determine a system has been attacked, boot to the BackTrack Live forensics distro and start your investigation with Sleuth Kit.

Internet intruders have many ingenious ways of escalating privileges and hiding their presence once they get inside your system. The best protection is to keep them out in the cold.

Nagios monitors your network and provides early warning for problems with hosts and services.

If you can’t monitor everything yourself, why not let your computers watch your computers? This month we examine some practical techniques for network monitoring.