Samhain (software)

Samhain
Samhain
Developer(s)	Samhain Services
Stable release	4.4.10 / May 14, 2023;2 years ago
Written in	C
Operating system	Linux, all POSIX/UNIX Systems, Microsoft Windows
Type	Security, Monitoring, HIDS
License	GNU General Public License
Website	la-samhna.de/samhain

Last updated July 07, 2025

Samhain is an integrity checker and host intrusion detection system that can be used on single hosts as well as large, UNIX-based networks. It supports central monitoring as well as powerful (and new) stealth features to run undetected in memory, using steganography.

Main features

Complete integrity check
- uses cryptographic checksums of files to detect modifications,
- can find rogue SUID executables anywhere on a disk, and
Centralized monitoring
- native support for logging to a central server via encrypted and authenticated connections
Tamper resistance
- database and configuration files can be signed
- log file entries and e-mail reports are signed
- support for stealth operation

References

↑ "Samhain File Integrity/Intrusion Detection System - Download". Samhain Labs. Retrieved 22 August 2023.
↑ "files for revision 17". Launchpad.net . Retrieved 15 June 2017.

External links

Samhain Homepage

This security software article is a stub. You can help Wikipedia by expanding it.

This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.

[1] "Samhain File Integrity/Intrusion Detection System - Download". Samhain Labs. Retrieved 22 August 2023.

[2] "files for revision 17". Launchpad.net . Retrieved 15 June 2017.

[1]

[2]

Samhain (software)

Contents

Main features

See also

References

External links