ALM FIM is a new File Integrity Monitoring solution which is part of the same family of products as Assuria's highly respected and Accredited ALM SIEM forensic SIEM/Log Management solution. ALM FIM is built on the same highly robust, scalable and flexible software platform.
Monitor, report and alert on changes to critical assets
ALM FIM Operations
ALM FIM collects and stores meta data about files, folders and registry keys (a.k.a. Nodes) in order to provide the monitoring services. Meta data collected includes details such as: check-sum of the contents, size, permissions, change time, links and other details.
The Nodes to be monitored can be explicitly selected, or they can be selected because they are part of a monitored package. ALM FIM uses the same definition of packages as the operating system on the computer that it is monitoring. Thus, for example, on MS Windows it uses the installed packages as displayed in the Programs and Features dialog. For Linux it uses the installed .rpm or .deb packages as appropriate.