FreeIPS is an intrusion prevention system originally coded for FreeBSD. It has the possibility of using regular expressions and byte-by-byte comparison of packet payloads. It includes plugin support, to allow maximum expandibility.
FreePFW is a web interface to IPFW firewall on FreeBSD servers. It allows authorized users, from authorized hosts changing *specific* rules at the firewall, granting remote access to the server.
An encrypted, IRC-Like chat system.
Hierarchical communications and management system for multiple NIDS and HIDS products.
ICAP Daemon that implements content scanning
icappfd is an ICAP daemon that can scan and change responses received from an HTTP server. It scans content for phrases, assigns a score to a page and will redirect to a block url for each page with a score that passes a pre-configured limit... It's kinda like a spam filter for the web. icappfd is used with proxy servers (squid3, and probably others) to protect users from certain types of content such as gambling, peer2peer, porn etc etc.
KISS is a kernel-side host-oriented security tool, which may bring you file integrity checking, file and process hiding and actions handling on special internal events (using a tiny scripting language).
MD5Guard is the client-server application used for remote monitoring of files consistency via a network. It uses MD5 hash for consistency check. The code is written in ANSI C. It is very strict, accurate, well structured and documented.
A number of tools to enhance management/coding of NFR (http://www.nfr.net) IDA, and various other admin tools that can be used for both NFR and hand coding other appliance scripts.
NIA Encoder. The objective of this project is to provide a full featured multi-platform php and asp script encoder. It´s to protect your source code when creating commercial software with asp or php language.
NetState is a distributed network monitoring system. It uses passive sensors to develop status information on a target network. Two major features provided by NetState are application/OS versions and port tracking.
This project's single goal is to maintain a patch that allows chrooting of users in OpenSSH. This patch will cause sshd to chroot when it encounters the magic token '/./' in a users home directory. The directory portion before the token is the direc
Robust and flexible VPN network tunnelling
OpenVPN is a robust and highly flexible tunneling application that uses all of the encryption, authentication, and certification features of the OpenSSL library to securely tunnel IP networks over a single TCP/UDP port. Discussion forums and project wiki can be found here: https://forums.openvpn.net/ http://community.openvpn.net/openvpn
Pam Smb allows authentication of Linux/Unix users using an SMB server (e.g. WinNT/2k, Samba)
Pace-ICMP is a utility that can allow X amount of ICMP (ping, etc) packets travel to the host, once X is exceeded, all ICMP traffic is blocked. This allows ping and traceroute functionality, while still protecting you against ICMP attacks.
Memebrship management solution for selling access and products
This our long term start-up that we decided to share with people for free. It is ready to use secure and tested membership solution that will help you to: - manage members - sell membership access - sell downloadable products - send newsletter - offer discounts Hope you'll love it ;)
Squid external acl for highload proxy servers
Efficient open proxy scanner software suite for Undernet IRC(u).
PyKnock is a total revolutionary method of Port Knocking. The client will send crypted,compressed command/message through UDP packets to daemon'specific port,the daemon will check the correctness of the message and it will execute a command.
Rainmaker is a command line pseudo random number generator designed to work on multiple platforms. Rainmaker can be used produce cryptographically strong non-blocking output in many formats (Base-16, Alphanumeric, Numeric , and Alpha only modes).
RemoteWAP gives you the ability to take control of a Linux Operating System from anywhere with a WAP enabled mobile phone. This project is being developed in Java. There is plans to support other Operating Systems such as Windows, Solaris, *BSD
SIDEN is a distributed network discovery tool used for intrusion detection research purposes. It simulates coordinated/distributed network probes against a network. The traffic generated can then be analyzed to improve Intrusion Detection Systems.
Security Workflow Analysis Tool
The Security Workflow Analysis Tool (SWAT) is a platform for modelling and analyzing workflows. It comes with ananlysis approaches to search for data leaks in workflows.
Syslog-sec, provides an open secure syslogd implementation based on (RFC) standards, including rfc3164 ("syslog") and the upcoming "syslog-sign" . Other extensions, will/can be added. More tools will be added, too
Protection by an optimized hosts file. Over 29300 DNS entires against Tracking, Adware, Spyware, Viruses, Popups and Redirecting. For more security and privacy. Points the insecure domains to the localhost that they don't get resolved by DNS Servers
Secure locate provides a secure way to index and quickly search for files on your system. It will also check file permissions and ownership so that users will not see files they do not have access to.