Added: October 26, 2010 | Visits: 1.115
Trinux is a ramdisk-based Linux distribution that boots from a single floppy or CD-ROM, loads it packages from an HTTP/FTP server, a FAT/NTFS/ISO filesystem, or additional floppies. Trinux contains the latest versions of popular Open Source network security tools for port scanning, packet...
Platforms: *nix
Added: September 10, 2010 | Visits: 1.271
FTester (The Firewall Tester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities. The tool consists of two perl scripts, a packet injector (ftest) and the listening sniffer (ftestd). The first script injects custom packets, defined in...
Platforms: *nix
Added: October 11, 2010 | Visits: 1.494
WallFire is a very general and modular firewalling application based on Netfilter or any kind of low-level framework. It will enable to manage every aspect of a firewall administration, from configuration to monitoring, intrusion detection, etc... WallFire will provide command line and...
Platforms: *nix
Added: January 07, 2010 | Visits: 1.504
BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system. BASE is a web interface to perform analysis of...
Platforms: *nix
Added: May 27, 2010 | Visits: 1.051
ipaudit-web logs network activity, maintains traffic summaries, and presents Web-accessible graphs and reports. ipaudit-web logs network activity, maintains traffic summaries, and presents Web-accessible graphs and reports. It is useful for identifying heavy bandwidth users, DoS attacks, and...
Platforms: *nix
Added: July 22, 2010 | Visits: 797
Streamline is a high-speed networking subsystem for commodity operating systems. It increases performance by moving processing tasks to the fastest location. Streamline supports in-kernel execution, but also dedicated hardware (NICs) and even remote machines. An implementation of Streamline for...
Platforms: *nix
Added: September 07, 2010 | Visits: 1.376
The Firewall Tester (FTester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities.The tool consists of two perl scripts, a packet injector (ftest) and the listening sniffer (ftestd). The first script injects custom packets, defined in...
Platforms: *nix
Added: November 07, 2010 | Visits: 1.887
EasyIDS software is an easy to install intrusion detection system configured for Snort. Based upon Patrick Harpers Snort installation guide and modeled after the trixbox installation cd, EasyIDS is designed for the network security beginner with minimal Linux experience. Whats New in This...
Platforms: *nix
Added: July 05, 2010 | Visits: 1.397
Hogwash Light BR is an Intrusion Prevention System that can filter packets directly in the layer 2 of the OSI model (so the machine doesnt need even an IP address). Detection of malicious/anomalous traffic is done by rules based in signatures, and the user can add more rules. It is an efficient...
Platforms: *nix
Added: February 17, 2010 | Visits: 1.186
pynids is a python wrapper for libnids, a Network Intrusion Detection System library offering sniffing, IP defragmentation, TCP stream reassembly and TCP port scan detection. Let your own python routines examine (or kill) network links. pynids is free software, licensed under the GPL. To...
Platforms: *nix
Added: June 20, 2010 | Visits: 943
barnyard is a fast output system for Snort. The "generic" notes for putting this thing together are below. You can see here the short version. 1.) ./configure 2.) make 3.) make install 4.) Edit the included barnyard.conf with specific details for your system 5.) barnyard -? 7.) Have fun!...
Platforms: *nix
Added: April 23, 2010 | Visits: 988
Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.0.x. Libnids offers IP defragmentation, TCP stream assembly and TCP port scan detection. The most valuable feature of libnids is reliability. A number of tests were...
Platforms: *nix
Added: March 26, 2010 | Visits: 919
fwsnort parses the rules files included in the snort intrusion detection system and builds an equivalent iptables ruleset for as many rules as possible. fwsnort accepts command line arguments to restrict processing to any particular class of snort rules such as "ddos", "backdoor", or...
Platforms: *nix
Added: April 14, 2010 | Visits: 1.055
ImSafe (Immune Security For your Enterprise) is a host-based intrusion detection tool. After a learning phase, it is able to detect changes in processes behavior, to detect buffer overflows, etc. It is implemented through a device driver (as a kernel patch) for the Linux kernel, but can also be...
Platforms: *nix
Released: June 09, 2013
|
Added: June 30, 2013 | Visits: 813
Udp Client Sever is a useful network utility for testing network programs, network services, firewalls and intrusion detection systems. Udp Client Sever can also be used for debugging network programs and configuring other network tools. The tool can work as a Udp client and Udp server, send and...
Platforms: Windows
Added: February 19, 2010 | Visits: 1.068
SID-IDS is a host intrusion detection system. Shell/PTY Intrusion Detection: Aims at detecting unwanted PTY action on UNIX systems. SID-IDS is a Host Intrusion Detection System. Consists of a kernel part and a user part. The kernel part plugs into terminal processing subsystem and logs hashed...
Platforms: *nix
Added: September 15, 2010 | Visits: 1.012
LEAF Bering-uClibc is the successor of the Bering distribution. Replacing glibc with uClibc a significantly smaller distribution is possible. All packages are ipv6-ready and based on the latest sources. It also provides a new and enhanced package management. LEAF Bering-uClibc is available for...
Platforms: *nix
Added: January 12, 2010 | Visits: 975
Devialog is a behavior/anomaly-based syslog intrusion detection system which detectsattacks via anomalies in syslog. Present log-based IDS: Nearly all present log-based intrusion detection systems operate using a pre-defined known signature base, usually painstakingly created by hand. They...
Platforms: *nix
Added: August 15, 2010 | Visits: 1.114
SIDEN is a distributed network discovery tool used for intrusion detection research. The current SIDEN architecture allows you to simulate coordinated/distributed network probes by a group of attackers. SIDEN has been tested successfully on the OpenBSD and FreeBSD operating systems. If you try...
Platforms: *nix
Added: September 08, 2010 | Visits: 810
mod_fortress is an application level firewall and intrusion detection system. mod_fortress is designed to intercept certain CGI/HTTP attacks by acting as a non-transparent proxy between an Apache server and an HTTP client..
Platforms: *nix
Windows Software
Albina Merfyn - I find this to be really easy to use. I can...
