Samhain is an open source security and network monitoring tool designed to detect malicious activity on a network. It uses a variety of methods to detect potential threats, including network protocol analysis, system log analysis, and port scanning. Samhain also provides an alert system to notify administrators of malicious activity or suspicious traffic. Samhain can be used to monitor large networks, and can be configured to run in the background, checking for malicious activity on a regular basis. It is available for both Linux and Windows operating systems, and is free to download.
Discontinued No longer on GitHub, repo removed.