2016-11-27: The password/passphrase read function used in our software now will kill the system call tracer process that attaches to our process; dtrace like process; processes that open system memory device or access our process' memory; process that opens our TTY. And it will continue to provide info for user to find possible TTY keylogger. On Linux platform, it will also try to prevent attacker to use Kprobe/Uprobe to steal the password/passphrase.
2016-11-13: Our recently updated WZSysGuard V5.1 provides an application security enhancement program: appguard. When supplied with those important applications' process IDs, the appguard process will detect whether those processes are being traced by system call tracer, debugger; dtrace like process created; processes that open system memory device or accessing those protected processes' memory. All these are possile hacking processes, so the appguard will try to kill them to minimize risk of secret info got stolen.
2016-11-13: Now, our updated wzshRUN V5.3 can help to enhance system's security: when a encrypted script is running, it can detect dtrace type of process, possible memory peeper, and kill them.
2016-07-02: Our newly released wzshSDK V5.3 can support to set encrypted script having capability to detect dtrace-kind of program running on the system, to provide better protection for password used in the script.
2016-06-21: wzcon now can help you to detect or prevent Trojan Horse attack, and it can also protect password/passphrase you input against most software based stealing attacks.
2016-06-11: Our demo machine at AWS is now expired, till now no one has won the reward of US$3,000 when the person can get the content of the file that get transfered in the remote job automation example, even when that file is not encrypted.
2016-06-10: Our WZSysGuard's operation console, wzcon, has been released. You can download it from our web server's "App Store" menu's "SHA384 CheckSum" page.
2016-05-30: Our WZSysGuard, CaclMgr and fcrypt now support being called from X-Window program. This feature is implemented in Python/Tkinter, requires X-Window program to set environment variable IN_X_ENV to value NEED_X_ASKPASS. Updated wzshSDK and wzshRUN now support dtrace/ProbeVue/SystemTap detection when environment variable FIND_TRACER is set to YES.
2015-12-12: Now our WZSysGuard becomes the 1st File Integrity Monitoring and Intrusion Detection Software that can detect hidden files on VxFS, and Solaris' UFS/ZFS.
2015-10-23: You can test our security software at AWS:
check README file for more detail.
2015-03-19: Our appRCadm now also supports Linux systems using systemd.
2015-02-21: We are pleased to announce that our WZSysGuard 5.0 has been released for most commercial UNIX/Linux platforms. The software is now more robust, and will give more trustworthy scan reports than other vendors' software, making intrusion detection and file integrity monitoring more efficient.
2014-08-08: We have changed our intrusion detection and file integrity monitoring software's name from WZFileGuard to WZSysGuard to reflect that our software is not just based on file change detection to detect intrusion, but also detect other changes happen on the system that will make intrusion detection far more effective.
2014-05-05: Our software for AIX now can also detect ProbeVue, so when our software requires user to enter password/passphrase, will be able to protect it from being stolen by malicious person using probevue, truss, or by reading user's tty.
2014-04-22: We have set up a RedHat RHEL6.4 machine and with WZFileGuard, CaclMgr, AutoSSH, AutoSFTP and appRCadm software installed for people to test our software.
To test, you can login to the roger account using ssh and password roger098. The IP address of the machine is 184.108.40.206. Ｐlease check ToTest/README for some info before starting the test.
2014-04-16: Our wzis.so PHP extension now can support PHP version 5.3.x to 5.5.x, so if you want to make web page more secure, use our PHP extension.
2014-04-02: Our AutoSSH can now detect OpenSSH Ebury Trojan Horse, prevent the further spread of this Trojan, safely protect the password/pass phrase from stolen by Trojan, system call tracer, dtrace, and key logger.
2014-03-21: Now our software for Linux also can detect dtrace and SystemTap, to prevent password/passphrase being stolen by malicious person using dtrace script or SystemTap module. This makes our Linux software also the most secure software for protecting your critical server.
2014-03-06: Found our wzis.so PHP extension module is not compatible with PHP 5.5.x, so for machines which use the PHP 5.5.x and onwards, no PHP encryption is supported until further notice.
2013-12-02: Our WZFileGuard for ARM/Linux now has a class for IP routing table, plus the firewall rule class, it's very suitable for network switch/firewall router.
2013-11-04: Our WZFileGuard for Linux now has class for firewall rules, so now it can help you to detect firewall change.
2013-11-03: Now our security trap detection and verification web interface is more secure: all the important web CGI scripts and major part of HTML files are encrypted now.
Our PortPon web interface also gets the security enhancement.
2013-09-30: Our PortMon V3.1 is now IPv6 compatible, means if you have servers using IPv6 addresses,PortMon can help to monitor their availability and inform the right people within one or two minutes when such server is unresponsive or crashed.
2013-09-08: Now our software also supports Linux running on IBM PowerPC (Power5/6/7/7+) servers, and ARMv5/v6/v7 based Linux servers.
2013-04-25: Now our PortMon has column sorting enabled: you can click the column header to sort the column.
2013-03-03: Now our password/pass phrase protection mechanism used by our wzappkey and WZFileGuard software can detect malicious person stealing your password using the way of reading your controlling tty. And now the detection of such attack is in real-time, means when you key in password or pass phrase for wzappkey or WZFileGuard, if a malicious person tries to steal that secret info using system call tracer, dtrace or reading the controlling tty, the attack will be detected in real-time, significantly reduce the risk of password stolen.
2012-04-27: Now our AutoSSH and AutoSFTP are able to detect dtrace, in addition to system call tracer, debugger, and Trojan Horse attack, so they not only allow you to automate jobs, but are also the most secure way to run jobs remotely and do file transfer.
2012-04-22: Our AutoSSH and AutoSFTP will soon be able to detect dtrace on Solaris platform, become the unique solution that can protect secret password or pass phrase from being stolen by malicious person using dtrace.
2012-04-14: Most of our software are now in wzpkg package format. It's easier to install and has better verification.
2012-03-24: We will soon to release most of our software in our own package format: wzpkg. With software packaged in wzpkg format, the installation of the software become very easy and simplified: just download the package, move it to /tmp or /var/tmp, chmod +x package_file_name, then run the file! It will check whether your machine has a version of this software already installed, and ask whether you want to remove it, if answer is yes, it will then remove the software first, and then install the current one, and also verify the newly installed files have no discrepancy in term of content and permission/ownership. And our wzpkgadm software will give you the commands to properly remove a wzpkg-formatted software or verify the software files' integrity.
2012-03-15: Now our PortMon software has dual language support: English and Chinese.