Skip to content
/ fim Public
forked from Achiefs/fim

FIM is an Open Source Host-based file detection tool that performs file system analysis, file integrity checking and real time alerting.

achiefs.github.io

License

GPL-3.0 license
1 star 15 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

gobraves/fim

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

223 Commits
.github
.github
 
 
config
config
 
 
pkg
pkg
 
 
src
src
 
 
test/system
test/system
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
Cargo.toml
Cargo.toml
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

FIM

Join us on Slack Coverage Status

FIM is a File Integrity Monitoring tool that tracks any event performed over your files. It is capable of keeping historical data of your files. It checks the filesystem changes in the background. FIM is the fastest alternative to other software like Ossec to perform file integrity monitoring. It can be integrated with other security tools like Ossec or Wazuh. The produced data can be ingested and analyzed with tools like ElasticSearch/OpenSearch. Developed with Rust, the next generation of programming language.

Features

  • Filesystem monitor
  • Identification of changes in content, attributes, ownership or permissions
  • Store logs of detected events
  • Easy integration
  • Compatible with Linux, macOS and Windows

Get started

To set up FIM perform the following steps:

  1. Download our last package from the packages repository, located at Github
  1. Install with:
  • RPM: yum install fim-*.rpm
  • DEB: dpkg -i fim*.deb

  1. You can start to work typing sudo nohup fim in your terminal

  2. FIM software will start monitoring any activity on the default folders configured in /etc/fim/config.yml file.

  3. If you want to test it you could launch touch /tmp/file.txt in your terminal then, take a look at /var/lib/fim/events.json file. It will store each produced event in JSON format.

Configuration

To customize your installation take a look at our Documentation Wiki

Contribute

Feedback

Feel free to open us an issue in this repository or send your feedback to our developers through support@achiefs.com We will be glad to hear from you and your thoughs about the software.

How to compile

We suggest using the Cargo tool to get dependencies automatically downloaded Steps:

cargo build --release

Then take a look at the target/release folder

Set up environment

Linux

  • Install git
  • Install gcc
  • Run curl https://sh.rustup.rs -sSf | sh to install rust (install at default location).
  • Reload PATH variable in your terminal.
  • Run git clone https://github.com/Achiefs/fim.git
  • Run cd fim to go inside cloned folder.
  • Edit config.yml to adjust your needs, add paths or ignore files.
  • Run cargo run to download crates, build and run FIM software.

Invest

Any kind of contribution will be invested into the project advertising, development or improvement. If you want to contribute with this matter you could send us your contribution through:

  • Cardano cryptocoin address addr1qxuu48cln7ch3p4ncf393z6axza764ltkqfnr5t5hrayfqyevgzmdqwrctf8tmtgentkd0sr9wuya5rzkk8twwt3tfgqy26zdd
  • Paypal paypal.me/achiefs

About

FIM is an Open Source Host-based file detection tool that performs file system analysis, file integrity checking and real time alerting.

achiefs.github.io

Resources

Readme

License

GPL-3.0 license
Activity

Stars

1 star

Watchers

0 watching

Forks

0 forks
Report repository

Releases

5 tags

Packages

No packages published

Languages

  • Rust 86.6%
  • Shell 4.0%
  • Roff 3.9%
  • Python 3.0%
  • Makefile 2.5%