Click a feature above to display info about the tool below
Sockets Inode Validator
Network socket inode validation is a rule based utility from RFX Networks intended to aid in the validation of inodes against each LISTEN socket on a system. The nature for this app is such that rouge binaries can easily hijack a user, program privileges, or work space; and utilize such to kill the old service & execute a new service on the known port they crashed. The best known examples of this trend is ÃƒÂ¢Ã‚Â€Ã‚Â˜tmpÃƒÂ¢Ã‚Â€Ã‚Â™ path uploaded content via php remote include exploits; which is executed, crashes the web server and starts a rouge httpd process and other such items. The execution cycle of NSIV is very simple, first it determines the running process ID of your binary followed by the trusted inode (that which is associated to the BIN variable). Then, the PORT value is used to check that the binary holding said port open actually references back to the trusted inode, if it does not then we assume the service has been hijacked and the PID is killed / RST executed with optional e-mail alert dispatched
"This new feature with all of its glory is a phenomenal buy.
The software firewall and hacker prevention/detection
system alone makes this ideal. And who can argue that
additional protection is never necessary?"