FIM is a File Integrity Monitoring tool that tracks any event performed over your files. It is capable of keeping historical data of your files. It checks the filesystem changes in the background. FIM is the fastest alternative to other software like Ossec to perform file integrity monitoring. It can be integrated with other security tools like Ossec or Wazuh. The produced data can be ingested and analyzed with tools like ElasticSearch/OpenSearch. Developed with Rust, the next generation of programming language.
- Filesystem monitor
- Identification of changes in content, attributes, ownership or permissions
- Store logs of detected events
- Easy integration
- Compatible with Linux, macOS and Windows
To set up FIM perform the following steps:
- Download our last package from the packages repository, located at Github
- Install with:
- RPM:
yum install fim-*.rpm
- DEB:
dpkg -i fim*.deb
-
You can start to work typing
sudo nohup fim
in your terminal -
FIM software will start monitoring any activity on the default folders configured in
/etc/fim/config.yml
file. -
If you want to test it you could launch
touch /tmp/file.txt
in your terminal then, take a look at/var/lib/fim/events.json
file. It will store each produced event in JSON format.
To customize your installation take a look at our Documentation Wiki
Feel free to open us an issue in this repository or send your feedback to our developers through [email protected] We will be glad to hear from you and your thoughs about the software.
We suggest using the Cargo
tool to get dependencies automatically downloaded
Steps:
cargo build --release
Then take a look at the target/release
folder
Linux
- Install git
- Install gcc
- Run
curl https://sh.rustup.rs -sSf | sh
to install rust (install at default location). - Reload PATH variable in your terminal.
- Run
git clone https://github.com/Achiefs/fim.git
- Run
cd fim
to go inside cloned folder. - Edit
config.yml
to adjust your needs, add paths or ignore files. - Run
cargo run
to download crates, build and run FIM software.
Any kind of contribution will be invested into the project advertising, development or improvement. If you want to contribute with this matter you could send us your contribution through:
- Cardano cryptocoin address
addr1qxuu48cln7ch3p4ncf393z6axza764ltkqfnr5t5hrayfqyevgzmdqwrctf8tmtgentkd0sr9wuya5rzkk8twwt3tfgqy26zdd
- Paypal paypal.me/achiefs