Using Linux Scripts to Monitor Security

This paper will show how to use basic Linux scripting to create a reusable network security monitor that is easy to use and easy to maintain. The purpose of this exercise is introduced with suggestions where it might be useful. Linux commands are discussed, along with techniques to automate them and interpret their results. Methods for turning these scripts into a generic, reusable tool that is easy to maintain are demonstrated, along with further suggestions for enhancing this tool. Various examples are given to show how these techniques can be applied to various security requirements. The full script including all the examples and the complete output are given at the end of the paper, along with a list of references. This should be enough information for security professionals to start creating their own generic reusable Linux scripts within their own collection of personal tools.