This tool monitors a directory of your choosing (usually /tmp) in real time. If any world-writable files or directories are created in the monitored directory, a notification is sent via the syslog protocol to a syslog server of your choosing.
This tool is not intended to detect any kind of malware or intrusion. Rather, it is a vulnerability research tool which alerts a researcher of potential symlink race or TOCTOU vulnerabilities as the researcher goes about their daily activities. In this way, the researcher takes a passive approach to discovering symlink race or TOCTOU vulnerabilities, rather than a more active approach (e.g. code audits.)
For more information, see https://github.com/mssalvatore/owwatcher.
Generate an embeddable card to be shared on external websites.
Choose your Linux distribution to get detailed installation instructions. If yours is not shown, get more details on the installing snapd documentation.
Is there a problem with owwatcher? Report this app
Thanks for bringing this to our attention. Information you provided will help us investigate further.
There was an error while sending your report. Please try again later.