Snort Rule

barnyard is a fast output system for Snort. The "generic" notes for putting this thing together are below. You can see here the short version. 1.) ./configure 2.) make 3.) make install 4.) Edit the included barnyard.conf with specific details for your system 5.) barnyard -? 7.) Have fun!...

cats2procmailrc can generate a procmail recipe from my mail categories file. The intent is to have an extremely succinct file of easily editable one line rules, generally of the form: folder tag pattern I build my .procmailrc like this: cats2procmailrc -a announce-email "+%" -t maildir -L...

Brcontrol is a set of patches to allow some interaction between a IDS and a firewall (currently snort and linux netfilter). It will help in the creation of aggresive honeypots or other advanced firewall and ids configurations. In can also work as bridge.. Get Brcontrol at SourceForge.net. Fast,...


Platforms: *nix

Ingo, the "Email Filter Rules Manager", started as a frontend for the Sieve filter language, and is now a generic and complete filter rule frontend that currently is able to create Sieve, procmail, and IMAP filter rules. The IMAP filter driver translates the filter rules on demand to IMAP...


Platforms: *nix

DLibs project is a PHP framework built keeping in mind the KISS rule. Main components are ActiveDB, a simple implementation of the ActiveRecord pattern and ActiveForm, a simple form handler.. Get DLibs at SourceForge.net. Fast, secure and free downloads from the largest Open Source applications...


Platforms: *nix

HTML::WikiConverter::Dialects is a Perl module which contains a tutorial on how to add a dialect. SYNOPSIS # In your dialect module: package HTML::WikiConverter::MySlimWiki; use HTML::WikiConverter -dialect; rule b => { start => **, end => ** }; rule i => { start => //, end => // };...


Platforms: *nix

Firewall Monitor allows you to monitor ipchains/iptables output in realtime. It supports both logging to a file/stdout and/or to tcpdump format capture logs. It also supports security features such as running non-root, and chrooting itself. Fwmon can easily be integrated into an existing...


Platforms: *nix

Parse::Nibbler is Perl module to parse huge files using grammars written in pure perl. Create a parser object using the ->new method. This method is provided by the Parse::Nibbler module and should not be overridden. The main functionality of the Parse::Nibbler module is the Register...


Platforms: *nix

fBuilder Plus is a Web-based utility for building and configuring your iptables/ipchains-based Linux firewall. It performs all actions in real-time and includes a Firewall Creation Wizard, edit, insert, and delete capabilities for firewall rules, rule shifting, support for DHCP clients, DMZ...


Platforms: *nix

Cellular::Automata::Wolfram is a Perl module that implements one-dimensional non-totalistic cellular automata as described in Dr. Steven Wolframs, A New Kind of Science, ISBN:1-57955-008-8 SYNOPSIS use Cellular::Automata::Wolfram; my $png_file = shift; my $caw = new...


Platforms: *nix

Hogwash is an inline packet scrubber that uses Snorts detection engine to drop malicious packets before they reach the target. The original version of what is now hogwash was written in 1996 while I was at Idaho State University. I had a web server that when patched, broke the software it...


Platforms: *nix

Lingua::Phonology::Rules is a Perl module for defining and applying phonological rules. SYNOPSIS use Lingua::Phonology; $phono = new Lingua::Phonology; $rules = $phono->rules; # Adding and manipulating rules is discussed in the "WRITING RULES" # section This module allows for the...


Platforms: *nix

AI::NeuralNet::BackProp is a simple back-prop neural net that uses Deltas and Hebbs rule. SYNOPSIS use AI::NeuralNet::BackProp; # Create a new network with 1 layer, 5 inputs, and 5 outputs. my $net = new AI::NeuralNet::BackProp(1,5,5); # Add a small amount of randomness to the network...


Platforms: *nix

FUSETrustees is a FUSE-based implementation of the Linux Trustees model of rule-based ACL. Its based on Linux Trustees code with many (and dirty) changes. No need to patch 2.4 kernels. Installation: The simplest way to compile this package is: 1. `cd to the directory containing the packages...


Platforms: *nix

LMF project is a flexible log monitoring framework that allows the user to match text from log files, using perl regular expressions and capturing parentheses (pattern). An optional external command (trigger) will be executed when a user-specified number of matches (threshold) is found within a...


Platforms: *nix

EasyIDS software is an easy to install intrusion detection system configured for Snort. Based upon Patrick Harpers Snort installation guide and modeled after the trixbox installation cd, EasyIDS is designed for the network security beginner with minimal Linux experience. Whats New in This...


Platforms: *nix

project-p project is a simulation in which particles interact with each other based on a simple rule. In p, a bunch of particles interact with each other according to this simple rule: every particle must move towards, away or watch another particle. When the program starts, each particle...


Platforms: *nix

dirwall is a small iptables firewall script that keeps the iptables rules separate from the script. The rules are stored in separate files so that other packages may maintain them. The dirwall rules are located in /etc/dirwall/{ACCEPT,FORWARD,MASQ,NAT,NOLOG,REJECT}/*". There may be multiple...


Platforms: *nix

GlowWorm FW Lite is a rule-based network security and monitoring application built on plugin-accessible framework.Rules can be defined on the basis of a set of connection criteria include the addresses, ports, relevant endpoint and protocol. Additionally, rules can be restricted to a particular...


Platforms: Mac

DiskBoss is an automated, rule-based file and disk management solution allowing one to perform disk space utilization analysis, file classification and categorization, duplicate files detection and removal, high-speed file synchronization and data migration, disk change monitoring, rule-based...


Platforms: Windows