M-ICE is a modular hostbased intrusion detection framework. It is used as middleware to close the gap between IDS research and IDS development. M-ICE consists of various parts that can be connected together by using network-or interprocess-communication
Mozcow GeoEnabler shall be able to convert an IP-address or a domain name into longitude and latitude values, which in their turn are supposed to be visualized appropriately.
MySQL Squid Access Report
Python application for monitoring IPv6 Neighbour Discovery traffic on a network with customisable metrics for detecting and alerting to unwanted/malicious activity.
A number of tools to enhance management/coding of NFR (http://www.nfr.net) IDA, and various other admin tools that can be used for both NFR and hand coding other appliance scripts.
This project contains PHP code and classes to pull NTOP Statistics out of a mySQL DB... Info such as host name, IP addresses, client ports, TCP Sessions, etc... can be reported on. Other reports are easy to add on.
Build custom filter for your network based off of common communication
NetProfiler builds a custom filter (BPF) for your network based off of common communications. FilterAnalyze-NetProfiler analyzes the custom filter built by NetProfiler (it may work with other filters as well).
Internet Control Firewall Intrusion Detection and Logger for Inbound and Outbound Traffic. Watches Files and Directories, Drive and Memory Protection.
nfgrep searches NetFlow v5 raw flows according to various search criteria: network, port, protocol, TCP flags, regular expression
Nmap Log Stripper is a Bash script intended to be a way to condense all, or some, of the IPs of a "random" (-iR) nmap scan into a file for later usage.
Nuhe is a log monitoring system, which is capable of alarm generation and action when rules are matched against log(s) activity.
OCD-01 [OSSEC Cool Dashboard]
OCD is a simple web UI written in PHP [and little CSS]. It displays dashboard of current OSSEC activity. Originally written to allow NOC to monitor OSSEC events in realtime.
Security analysis tools produced by The Ohio State University Network Security Group.
The first open source Web 2.0 website log analyzer, OWS uses PHP and jQuery to provide a powerful and intuitive interface to manipulate website log data stored in a MySQL database. Has a simple plugin system so you can create custom output as well.
Log Management Solution
Logs Analyzer, Alerter & Reporter with a Web Interface
Openstat Statistics Project
PHP packet2sql is a spawn of xant's packet2sql program. This program provides a PHP frontend to packet2sql and also enables packet2sql to work with both iptables and ipchains network filters (instead of just ipchains).
An PHP-Scipt which displays various informations about your visitors and access details and averages. Demo --> http://ut.freddynet.de/phpstats4u/
ppplog keeps track of your ppp online session costs. It detects online/offline states and automatically calculates costs according to your local phone company. Simplicity and flexibility was key in development.
Panoptis plans to create a network security tool (N-IDS) to detect and block DoS and DDoS attacks. The programming language is C++, and the input is being provided by routers.
Pathalizer is a tool to visualize the paths most users take when browsing a website. This information can then be used to decide how to improve the navigation of the site, and which parts are most worth improving and keeping up to date.
Automated complaint system (spamcop style) for complaints and abuses againts pedophile website and abuses over the Internet. Need developpers. See forum for the planning process.
Comprehensive & high performance data distribution &transformation system. Features a simple, user-friendly event driven scripting interface transparently generates & execs highly efficient Perl/C code. Uses:ETL,datawarehousing,statistics,data-cleansing.
This project is an approach to automating the testing of performance properties of complex systems.Just like functional specs for software we aim to develop an executable language for asserting performance expectations of a program.This implements Sharon
PACIE (Perl Analysis Console for Intrusion Events) Attempts to be a complete replacement for ACID. Place this cgi script on your internal webserver and receive powerfull reporting on your current snort database.