Search Results for "command line tool"

The iplock tool is a simple iptables extension that allows you to run iptables commands that otherwise require root access in order to block and unblock IP addresses in your firewall. This is particularly useful if you have a webserver such as Apache2 running a scripting language such as PHP without root permissions. When you detect that a user is likely a hacker (i.e. tries to access a folder named wp-admin on a non-Wordpress website) then you can use iplock <his-IP-address> to block...

ITVal is an analysis tool for evaluating iptables firewall systems. It provides an easy way for a system administrator to verify that his firewall provides the protection he thinks it does. ITVal can analyze multiple NAT'd firewalls connected serially.

iplist is a list based packet handler which uses the netfilter netlink-queue library (kernel 2.6.14 or later). It filters by IP-address and is optimized for thousands of IP-address ranges.

Anoubis is a Security Suite which implements a secured environment for applications. The core of the suite is an Application Firewall alongside with a Sandbox. Mechanisms to assure the authenticity of files, directories and applications are provided.

DFA library is a regular expression library capable of the classic RE syntax (i.e. - without any perl extension). Unlike many other libraries with similar functionality, a deterministic finite automata (DFA) is used. DFA was formerly called npcre, wh

Cluster-Manager Daemon that uses Netfilter clusterip to make active-active clusterip. Keep-alive notify messages are sent periodically to every clusternode. clusterip is configured automatically when there are changes in the cluster.

An all-in-one Linux firewall/gateway distribution which features an easy to use yet powerful web based management console. Created to be a unified threat management system to protect and defend a network. Uses Zend Framework heavily

l7f stands for "Layer7Firewall" which is a firewall-system, that protects your application on any protocol and fits its security needs flexibly. It can be used for example as web-application firewall.

Allows users of a Linux workstation to control which programs access the Internet. This can be done statically by listing them in a file or dynamically via a GUI dialog box that appears when a new program attempts to connect to the Internet.

The goal of WallFire is to build a very general and modular firewalling application based on netfilter or any kind of low-level framework. It will provide a multi-language API, command line and interactive tools as well as X11 or HTML front-ends.

A dynamic Firewall (using the iptables netfilter) which can alter its is rules on detection of certain attacks/events. Very easily modified and expendable, with mySQL back-end and dynamically loaded user-space filters.

KFW aims to be a simple to use but powerful Firewall/IDS. That will have a GUI designed since its origins, and will use state of the art firewalling and intrusion detection techniques to achieve maximum performance.