OpenDLP aims to detect potential data loss
Source: OpenDLP project A new open source project, OpenDLP, aims to detect data loss in organisations by automated scanning for potentially confidential information. The system consists of a management server, written in Perl, and an agent, written in C, which is deployed to users' systems to carry out the scanning. The agent uses a library of regular expressions to scan the user's local storage for patterns which represent sensitive information. The agents have additional checks for potential credit card numbers to reduce false positives, white/blacklists to prevent some files being scanned and the ability to filter scanned files based on file extensions. Agents are currently only available to run on Windows 2000 or later.
The agents report their findings back to the server over an SSL channel. OpenDLP is able to automatically deploy and start agents over Netbios/SMB, using appropriate Windows domain credentials. The scan results are exportable as XML for further processing. Future plans for OpenDLP include adding zip support to allow it to read Office 2007 and OpenOffice files, database scanning abilities, better logging and more powerful false positive prevention. OpenDLP 0.1 is released under the GPLv3 and can be downloaded from the project's code.google.com page.