Ok so i know there are programs to make a list of all the files in your computer and then compare it to another list to see what stuff that has been added to the next time. There are also other programs to monitor the activities in the computer, i believe Mab made something like that not so long ago.
No i am wondering, is there a program like this where i can specify ONE special file? For example a file that i think is malicious, but no AV detects it.....i want to see what that file adds to the system.
Does anyone know of such a program?
[Question] File monitor?
- Big-E
- Administrator
- Posts: 1332
- Joined: 16 May 2007, 16:00
- 16
- Location: IN UR ____ , ____ING UR _____ .
- Contact:
Yuck, I hope that the tag messed up your formatting or me and you need to sit down and have a talk on creating neat code.
Code: Select all
- bad_brain
- Site Owner
- Posts: 11636
- Joined: 06 Apr 2005, 16:00
- 19
- Location: In your eye floaters.
- Contact:
hm, on Linux systems you can use Tripwire, it's used on servers to detect file changes helping to notice if a system was compromised. the usage is pretty easy, but the initial setup is a little pain in the rear because you have to edit/add the paths in the config files.
http://www.tripwire.com/products/enterprise/ost/
http://www.tripwire.com/products/enterprise/ost/
- computathug
- Administrator
- Posts: 2693
- Joined: 29 Mar 2007, 16:00
- 17
- Location: UK
- Contact: