SSHWATCH v2.0 Intrusion Prevention System (IPS) for Secure Shell (SSH) Logo

SSHWATCH v2.0 Intrusion Prevention System (IPS) for Secure Shell (SSH)

0
Free
Updated 11 March 2025
Visit Website

Continuously tail system security logs, searching for failed SSH login attempts. After a set number of consecutive failed attempts, the source IP is blocked using iptables and NMAP/DIG is run to probe the blocked IP. Requirements: Linux (Redhat, Debian) root or equivalent, OPENSSH Server, Python 2.4+, iptables (IPv4), NMAP.

FEATURES

SIMILAR TOOLS

hpfeeds is a lightweight authenticated publish-subscribe protocol with Python 3 compatible broker and client.

JARM is a TLS server fingerprinting tool used for identifying server configurations and malicious infrastructure.

A Linux command-line tool that allows you to kill in-progress TCP connections based on a filter expression, useful for libnids-based applications that require a full TCP 3-way handshake for TCB creation.

A multi-threaded scanner for identifying CORS flaws and misconfigurations

A Docker container that starts a SSH honeypot and reports statistics to the SANS ISC DShield project

A framework for creating and executing pynids-based decoders and detectors of APT tradecraft

An open source, self-hosted implementation of the Tailscale control server.

A powerful directory/file, DNS and VHost busting tool written in Go.

A wrapper around jNetPcap for packet capturing with Clojure, available for Linux and Windows.

CyberSecTools logoCyberSecTools

Explore the largest curated directory of cybersecurity tools and resources to enhance your security practices. Find the right solution for your domain.

Operated by:

Mandos Cyber • KVK: 97994448

Netherlands • contact@mandos.io

Copyright © 2025 - All rights reserved