This linux tool is more an early warning system than IDS. it scans system logs for signs of intrusion in real time. produces colored output on the tty, sends alerts and regular reports. Excellent database of suspicious logfile strings included.
991fee1240493841d942a05ffab5ef5d95051155144bbcb9dbabe4e3ff1352a8