# Install aide with Homebrew, apk, apt, dnf, MacPorts, Nix, winget, zypper

File and directory integrity checker. Version 0.19.3 via Homebrew; verified from local package data.

## Install

```sh
sudo av install brew:aide
```

Additional install commands:

### macOS

- Homebrew (100%):

```sh
brew install aide
```

  Evidence: local Homebrew formula metadata

- MacPorts (94%):

```sh
sudo port install aide
```

  Evidence: MacPorts ports tree: security/aide/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1

### Linux

- apk (92%):

```sh
sudo apk add aide
```

  Evidence: Alpine Linux edge package indexes: aide from https://dl-cdn.alpinelinux.org/alpine/edge/testing/x86_64/APKINDEX.tar.gz

- Debian apt (92%):

```sh
sudo apt install aide
```

  Evidence: Debian stable package indexes: aide from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz

- dnf (92%):

```sh
sudo dnf install aide
```

  Evidence: Fedora Rawhide package metadata: aide from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst

- Nix (92%):

```sh
nix profile install nixpkgs#aide
```

  Evidence: nixpkgs package indexes: pkgs/by-name/ai/aide/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1

- zypper (92%):

```sh
sudo zypper install aide
```

  Evidence: openSUSE Tumbleweed package metadata: aide from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst

### Windows

- winget (92%):

```sh
winget install --id CodeStory.Aide -e
```

  Evidence: Windows Package Manager source index: CodeStory.Aide from https://cdn.winget.microsoft.com/cache/source.msix

## Package facts

- **Package key:** brew:aide
- **Package manager:** Homebrew
- **Package manager page:** <https://formulae.brew.sh/formula/aide>
- **Version:** 0.19.3
- **Source summary:** File and directory integrity checker
- **Homepage:** <https://aide.github.io/>
- **Repository:** <https://github.com/aide/aide>
- **Upstream docs:** <https://aide.github.io/>
- **License:** GPL-2.0-or-later
- **Source archive:** <https://github.com/aide/aide/releases/download/v0.19.3/aide-0.19.3.tar.gz>
- **Generated:** 2026-07-08T07:18:31+00:00

## Executables

- aide (cli)
- aide (alias)

## Dependencies

- libgcrypt
- libgpg-error
- pcre2

## Build dependencies

- pkgconf

## Uses from macOS

- curl

## Install behavior

- Post-install hook: not defined
- Bottle: available on arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux

## Freshness

- Page generated: 2026-07-08
- Package-manager version: 0.19.3
- Local data: ok
- Upstream repository: https://github.com/aide/aide
- info: No package-manager update timestamp was available.
- info: No cached GitHub release or tag data was available.
## Project history and usage

AIDE, the Advanced Intrusion Detection Environment, is a Unix file and directory integrity checker. It builds a database from rules in `aide.conf`, records file metadata and cryptographic checksums, and later compares the live filesystem against that baseline.

### Project history

AIDE was originally written by Rami Lehti and Pablo Virolainen in 1999. The official project site records Richard van den Berg as maintainer from 2003 to 2010 and Hannes von Haugwitz taking over in October 2010.

The project has stayed close to classic Unix security-tool culture: C source releases, signed tarballs and git tags, a mailing list, manual pages, text configuration, and distribution packaging. Its release notes show gradual modernization, including the 0.17 configuration/reporting changes in 2021, PCRE2 and multithreaded checksum work in 0.18, and the 0.19 move from libmhash to libnettle plus newer hash algorithms and report formats.

The current public GitHub repository was created in 2019, but official project history predates GitHub by two decades. The official website lists stable release 0.19.3 with release date 2026-01-31.

### Adoption history

AIDE is widely distributed through operating-system package repositories rather than primarily through language package managers. The official site lists downstream packages for Debian, Ubuntu, FreeBSD, Gentoo, Homebrew, MacPorts, NixOS, OpenBSD, openSUSE/SUSE, Red Hat, CentOS, and Fedora.

The input package facts also list apk, brew, Debian, dnf, MacPorts, Nix, Ubuntu, winget, and zypper package names, reinforcing that it is a cross-distribution system administration tool.

### How it is used

Administrators initialize an AIDE database for a known-good system and later rerun AIDE to detect changed files, attributes, links, permissions, ownership, timestamps, and hashes. The official manual frames it as a way to detect tampering in key system binaries and other files after a suspected compromise.

AIDE does not use application credentials. Although `aide.conf` is central to operation, the sources checked did not document one portable config-file path across package managers, so this batch leaves config-file-location null.

### Why package nerds care

AIDE is the kind of package that package managers exist to carry: old, security-sensitive, C-based, compiled with optional platform features, distributed through nearly every Unix family, and expected to integrate with local filesystem layout and administrator policy.

Its formula and distro packages matter because local defaults, compile-time options, hash libraries, and config paths can differ. For package nerds, AIDE is less about a fashionable CLI and more about the long tail of maintaining trustworthy system tools across operating systems.

### Timeline

- 1999: AIDE originally written by Rami Lehti and Pablo Virolainen.
- 2003: Richard van den Berg begins maintaining the project, according to the official site.
- 2010: Hannes von Haugwitz takes over project maintenance.
- 2019: Current GitHub repository created and 0.16.x releases appear in official NEWS.
- 2021: Version 0.17 introduces major configuration and reporting changes.
- 2023: Version 0.18 adds PCRE2 and multithreaded checksum support.
- 2026: Official site lists stable release 0.19.3.

### Related projects

- Tripwire-style host intrusion detection and file integrity monitoring tools.
- Linux distribution security packages and ports trees.
- Hash and filesystem attribute libraries such as nettle, PCRE2, ACL, xattr, SELinux, and e2fsattrs.

### Sources

- <https://aide.github.io/>
- <https://aide.github.io/doc/>
- <https://github.com/aide/aide/blob/master/AUTHORS>
- <https://github.com/aide/aide/blob/master/NEWS>


## Security Notes

narrow executable package without higher-risk signals.

- **Geiger risk:** green / low
- narrow executable package without higher-risk signals

## Source Database Details

- **Source Database:** Homebrew formula API
- **Tap:** homebrew/core
- **Full Name:** aide
- **Version Scheme:** 0
- **Revision:** 0
- **Head Version:** HEAD
- **Bottle Stable Root URL:** <https://ghcr.io/v2/homebrew/core>
- **Deprecated:** no
- **Disabled:** no
- **Keg Only:** no
- **URL Keys:** head, stable

## Other Package-Manager Records

- Debian apt - aide - 0.19.1-2+deb13u2: normalized package name match | Debian stable package indexes: aide from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz | Advanced Intrusion Detection Environment - dynamic binary | https://aide.github.io
- Debian apt - aide-common - 0.19.1-2+deb13u2: normalized package name match | Debian stable package indexes: aide-common from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz | Advanced Intrusion Detection Environment - Common files | https://aide.github.io
- Debian apt - aide-dynamic - 0.19.1-2+deb13u2: normalized package name match | Debian stable package indexes: aide-dynamic from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz | Advanced Intrusion Detection Environment - transitional package | https://aide.github.io
- Nix - aide: normalized package name match | nixpkgs package indexes: pkgs/by-name/ai/aide/package.nix from https://api.github.com/repos/NixOS/nixpkgs/git/trees/master?recursive=1
- Ubuntu apt - aide - 0.18.6-2build2: normalized package name match | Ubuntu 24.04 LTS package indexes: aide from https://archive.ubuntu.com/ubuntu/dists/noble/main/binary-amd64/Packages.gz | Advanced Intrusion Detection Environment - dynamic binary | https://aide.github.io
- Ubuntu apt - aide-common - 0.18.6-2build2: normalized package name match | Ubuntu 24.04 LTS package indexes: aide-common from https://archive.ubuntu.com/ubuntu/dists/noble/main/binary-amd64/Packages.gz | Advanced Intrusion Detection Environment - Common files | https://aide.github.io
- Ubuntu apt - aide-dynamic - 0.18.6-2build2: normalized package name match | Ubuntu 24.04 LTS package indexes: aide-dynamic from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz | Advanced Intrusion Detection Environment - transitional package | https://aide.github.io
- apk - aide - 0.19.3-r0: normalized package name match | Alpine Linux edge package indexes: aide from https://dl-cdn.alpinelinux.org/alpine/edge/testing/x86_64/APKINDEX.tar.gz | file integrity checker and intrusion detection program | https://aide.github.io/
- apk - aide-doc - 0.19.3-r0: normalized package name match | Alpine Linux edge package indexes: aide-doc from https://dl-cdn.alpinelinux.org/alpine/edge/testing/x86_64/APKINDEX.tar.gz | file integrity checker and intrusion detection program (documentation) | https://aide.github.io/
- dnf - aide - 0.19.2-15.fc44: normalized package name match | Fedora Rawhide package metadata: aide from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst | Intrusion detection environment | https://github.com/aide/aide
- zypper - aide - 0.19.2-2.3: normalized package name match | openSUSE Tumbleweed package metadata: aide from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst | Advanced Intrusion Detection Environment | https://aide.github.io/
- zypper - aide-test - 0.19.2-2.3: normalized package name match | openSUSE Tumbleweed package metadata: aide-test from https://download.opensuse.org/tumbleweed/repo/oss/repodata/be8d3611d25469107f32075a1697e69ec57a2b850b42348a658cc671ad5ec2b50760d02c3e59524d50da9a11d5be799bdaffba2e166e8ca8858512e3c0bd665d-primary.xml.zst | Simple AIDE testing | https://aide.github.io/
- MacPorts - aide: normalized package name match | MacPorts ports tree: security/aide/Portfile from https://api.github.com/repos/macports/macports-ports/git/trees/master?recursive=1
- winget - CodeStory.Aide: normalized package name match | Windows Package Manager source index: CodeStory.Aide from https://cdn.winget.microsoft.com/cache/source.msix


## Related links

- [Source-control packages](https://www.automicvault.com/pkg/source-control-tools/) - Belongs to a source-control command family.
- [Terminal utility packages](https://www.automicvault.com/pkg/terminal-utilities/) - Matched terminal and command-line workflow metadata.
- [Networking and protocol packages](https://www.automicvault.com/pkg/networking-protocol-tools/) - Matched network, protocol, or remote-service metadata.
- [Security and crypto packages](https://www.automicvault.com/pkg/security-crypto-tools/) - Matched security, identity, cryptography, password, signing, or certificate metadata.
- [libgcrypt](https://www.automicvault.com/pkg/brew/libgcrypt/) - Runtime dependency declared by Homebrew.
- [libgpg-error](https://www.automicvault.com/pkg/brew/libgpg-error/) - Runtime dependency declared by Homebrew.
- [pcre2](https://www.automicvault.com/pkg/brew/pcre2/) - Runtime dependency declared by Homebrew.
- [pkgconf](https://www.automicvault.com/pkg/brew/pkgconf/) - Build dependency declared by Homebrew.
- [kekkai](https://www.automicvault.com/pkg/brew/kekkai/) - Shares av.db curated category or tags: cli, file-integrity, monitoring, security.
- [logcheck](https://www.automicvault.com/pkg/brew/logcheck/) - Shares av.db curated category or tags: cli, monitoring, security.
- [aircrack-ng](https://www.automicvault.com/pkg/brew/aircrack-ng/) - Shares av.db curated category or tags: cli, security.
- [amass](https://www.automicvault.com/pkg/brew/amass/) - Shares av.db curated category or tags: cli, security.
- [anubis](https://www.automicvault.com/pkg/brew/anubis/) - Shares av.db curated category or tags: cli, security.
- [authoscope](https://www.automicvault.com/pkg/brew/authoscope/) - Shares av.db curated category or tags: cli, security.
- [azurehound](https://www.automicvault.com/pkg/brew/azurehound/) - Shares av.db curated category or tags: cli, security.
- [bagel](https://www.automicvault.com/pkg/brew/bagel/) - Shares av.db curated category or tags: cli, security.
- [gnupg-pkcs11-scd](https://www.automicvault.com/pkg/brew/gnupg-pkcs11-scd/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, error, libgcrypt, libgpg, libgpg-error.
- [monkeysphere](https://www.automicvault.com/pkg/brew/monkeysphere/) - Security-sensitive metadata or terminology overlaps. Shared terms: cli, error, libgcrypt, libgpg, libgpg-error.

## Combined YAML source

View the package source record on GitHub. [combined/aide.yml](https://github.com/automic-vault/db/blob/main/combined/aide.yml)


## Sources

- Nucleus package database
- Geiger risk classifier
- package-page enrichment
- curated package history
- package version freshness
- av.db category and tag curation
- package relationship graph
- external package-manager database matches
- cross-ecosystem install command graph
