Pads (Passive Asset Detection System) is a signature-based detection engine used to passively detect network assets. Asset management is an important factor in information security. A good security administrator should keep track of all devices attached to the network. Even though active...
|License: Freeware||Size: 235.52 KB||Download (87): Pads Download|
Smit is a simple ARP sniffer for switched/unswitched networks. It works even better on switched networks, because the spoofed sides do not see the duplicated packets. I based the tool on sources from arpmitm and arprelay and included nice features like automatic ARP MAC query and some...
|License: Freeware||Size: 8.19 KB||Download (87): Smit Download|
EasyIDS software is an easy to install intrusion detection system configured for Snort. Based upon Patrick Harpers Snort installation guide and modeled after the trixbox installation cd, EasyIDS is designed for the network security beginner with minimal Linux experience. Whats New in This...
|License: Freeware||Size: 480 MB||Download (86): EasyIDS Download|
Libnids is an implementation of an E-component of Network Intrusion Detection System. It emulates the IP stack of Linux 2.0.x. Libnids offers IP defragmentation, TCP stream assembly and TCP port scan detection. The most valuable feature of libnids is reliability. A number of tests were...
|License: Freeware||Size: 143.36 KB||Download (83): Libnids Download|
scanlogd is a TCP port scan detection tool, originally designed to illustrate various attacks an IDS developer has to deal with, for a Phrack Magazine article (see below). Thus, unlike some of the other port scan detection tools out there, scanlogd is designed to be totally safe to use. This...
|License: Freeware||Size: 10.24 KB||Download (83): scanlogs Download|
Vipuls Razor is a collaborative, distributed, spam detection and filtering network. Through user contribution, Razor establishes a distributed and constantly updating catalogue of spam in propagation that is consulted by email clients to filter out known spam. Detection is done with statistical...
|License: Freeware||Size: 788.48 KB||Download (83): Vipuls Razor Download|
The Firewall Tester (FTester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities.The tool consists of two perl scripts, a packet injector (ftest) and the listening sniffer (ftestd). The first script injects custom packets, defined in...
|License: Freeware||Size: 30.72 KB||Download (82): Firewall Tester Download|
Face Detection in Color Images is designed as a handy and easy-to-use instrument that is able to cover an algorithm for face detection in color images.
Face Detection in Color Images was developed with the help of the Java programming language.
|License: Freeware||Download (82): Face Detection in Color Images Download|
pkdump is a port scanning detection tool. The program detect any TCP ,UDP port scanning or open connection attempt from foreign host over the internet with IP protocol version 4 or IP protocol version 6 . The program can detect: TCP connect , TCP syn , TCP fin , TCP xmas, TCP ack, TCP null(no...
|License: Freeware||Size: 18.43 KB||Download (81): pkdump Download|
pynids is a python wrapper for libnids, a Network Intrusion Detection System library offering sniffing, IP defragmentation, TCP stream reassembly and TCP port scan detection. Let your own python routines examine (or kill) network links. pynids is free software, licensed under the GPL. To...
|License: Freeware||Size: 133.12 KB||Download (80): pynids Download|
pcapsipdump is libpcap-based SIP sniffer with per-call sorting capabilities. It writes SIP/RTP sessions to disk in a same format, as "tcpdump -w", but one file per SIP session (even if there is thousands of concurrent SIP sessions).
|License: Freeware||Size: 20.48 KB||Download (79): pcapsipdump Download|
SID-IDS is a host intrusion detection system. Shell/PTY Intrusion Detection: Aims at detecting unwanted PTY action on UNIX systems. SID-IDS is a Host Intrusion Detection System. Consists of a kernel part and a user part. The kernel part plugs into terminal processing subsystem and logs hashed...
|License: Freeware||Size: 59.39 KB||Download (78): SID-IDS Download|
mod_fortress is an application level firewall and intrusion detection system. mod_fortress is designed to intercept certain CGI/HTTP attacks by acting as a non-transparent proxy between an Apache server and an HTTP client..
|License: Freeware||Size: 14.34 KB||Download (77): mod_fortress Download|
ImSafe (Immune Security For your Enterprise) is a host-based intrusion detection tool. After a learning phase, it is able to detect changes in processes behavior, to detect buffer overflows, etc. It is implemented through a device driver (as a kernel patch) for the Linux kernel, but can also be...
|License: Freeware||Size: 245.76 KB||Download (77): ImSafe Download|
passlogd is a purpose-built sniffer for capturing syslog messages in transit. This allows for backup logging to be performed on a machine with no open ports. Useful if your log server is compromised or you dont want to sift through a terabyte of sniffer logs. Passlogd is currently under...
|License: Freeware||Size: 8.19 KB||Download (76): passlogd Download|
Devialog is a behavior/anomaly-based syslog intrusion detection system which detectsattacks via anomalies in syslog. Present log-based IDS: Nearly all present log-based intrusion detection systems operate using a pre-defined known signature base, usually painstakingly created by hand. They...
|License: Freeware||Size: 22.53 KB||Download (76): check-ps Download|
GstPUID is a GStreamer element that allows for fingerprint-based detection of music files using MusicDNS/MusicIP and Musicbrainz. It allows for detection of the tracks artist and title based on the audio data only. It works with any file format that is supported by GStreamer. GstPUID is...
|License: Freeware||Size: 317.44 KB||Download (76): GstPUID Download|
Hogwash is an inline packet scrubber that uses Snorts detection engine to drop malicious packets before they reach the target. The original version of what is now hogwash was written in 1996 while I was at Idaho State University. I had a web server that when patched, broke the software it...
|License: Freeware||Size: 194.56 KB||Download (75): Hogwash Download|
SIDEN is a distributed network discovery tool used for intrusion detection research. The current SIDEN architecture allows you to simulate coordinated/distributed network probes by a group of attackers. SIDEN has been tested successfully on the OpenBSD and FreeBSD operating systems. If you try...
|License: Freeware||Size: 20.48 KB||Download (75): SIDEN Download|
KMtraceViewer is a graphical user interface for the KMtrace leak detection program. KMtrace is part of the kdesdk package. Whats New in This Release: - fixed installation path of icons (for making them part of the package).
|License: Freeware||Size: 399.36 KB||Download (74): KMtraceViewer Download|