Watcher
... the real-time intrusion detection & prevention system and superordinate firewall manager
Why wait until attackers mess with your services?
What is Watcher and what it is NOT?
Watcher is a security tool-set for networked Linux server systems that provides real-time intrusion detection and prevention and efficiently locks out malicious attackers from access to the server by putting firewall DROPs into the firewall.
Watcher is NOT a network analysis tool-set to analyse ethernet packages in all detail that are going in and out from the server system as this is not needed for the purpose. Much analysis takes much processing time and when facing attacks like 'brute-force attacks' where attackers flood a service on a server in milli-seconds processing time is a precious resource if proactive reaction in real-time is the demand.