Hank is a scalable, extensible, modular, threaded user-space program to handle all your packet juggling needs. It'll analyze, report, and act on network traffic in any protocol, at any OSI layer, at any nesting depth. And it'll do it damned fast.
Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TCP or UDP) from one primary destination host to a secondary destination host.
The ICFTool is implemented for the .NET platform. It allows an administrator to set exceptions for the Internet Connection Firewall installed with Windows XP Service Pack2 from the command line. Exceptions may be specified in a XML file and allow for very
FBSD-DEV: INSTALL6 is a post installation script that automates several key points and procedures involved in updating and securing FreeBSD. Updating the source and ports, securing system, and the configuration of pf firewall.
IPFIRE-wall is a framework that implements a network firewall. It can be used in desktop systems and in simple network configurations, providing a friendly graphical interface and a simple installation procedure. Also unprivileged users can personalize.
A front-end GUI for quickly and easily editing/managing iptables rules. It's written in Ruby, and depends on Gtk+ 2.
This script reads your iptables-based firewall configuration and displays your rules in the order in which packes will actually traverse them. Output is intuitive while closely resembling that of iptables-save, and indicates table ownership of rules, etc
IPTables::IPv4 is a Perl interface for managing the kernel-level Netfilter subsystem using Perl scripts.
etherdam is an IPTables firewall configuration engine; it implements a primitive (and hopefully simple) scripting language as an alternative to direct use of iptables.
iptables-TNG ( The Next Generation of iptables) An environment that can use different packet classification algorithm (eg. tuple) to support large rulesets (more than 10,000 rules) for high bandwidth networks.
A simple NAT(network address translator) for IPv6 (Linux only). Make sure if you really need it before using it. Functions: 1. IPv6 auto configuration; 2. TCP, UDP and ICMP-Echo port forwarding; 3. static port mapping for TCP and UDP.
Infect is a network traffic classification tool, that classifies TCP protocols. The classification is based on ML techniques. Scen: Train/Recognize arbitrary protocols (SSH, HTTPS..), Detect policy violations (e.g. tunnels)
IPFC is a distributed management solution for security module (firewall, nids). Security module can be packet-filtering (ipfw,netfilter,ipf ...), NIDS or any other servers (syslog...) or embedded devices.
Iptables FIlter Generator is a easy way to make iptables rules..
iptables based firewall for Linux
KGD - Kişisel Güvenlik Duvarı Türkçe içerikli kişisel güvenlik duvarı.
l7f stands for "Layer7Firewall" which is a firewall-system, that protects your application on any protocol and fits its security needs flexibly. It can be used for example as web-application firewall.
Linux ICMP Knock Daemon is a simple port knocking system based on ICMP. It use sha2 for authentication: a hash from client IP address and a secret pass phrase, this is not really an authentication mechanism but it work's.
An easy, yet highly-configurable iptables-based firewall solution designed for everybody from home users to network admins. Functionality for IPv6, tunneling, IPSec, and advanced routing is planned.
nftables-plus userspace utilities
Project's aim is to provide automated way to build kernels and ramdisk images for use with MagicBox 1.1/2.0 hardware platform.
LnxFire is a Linux & Gnome firewall tool for the small business owner. Use the firewall creation wizard to quickly create a basic firewall. Featuring dynamic rule modifiers, proactive monitoring, reporting, email alerts and auto lockout of port scanners.
Netscreen Firewall Log Analyser which can analyse log files in Netscreen Log File format and copy data into Access Database. Developed by Specialists for Computer Systems (SCS)
LogBox is a web based system for real time firewall log analysis. It consists of a daemon for data gathering, a database for log storage and a web interface for user interaction. An extension to general syslog usage is possible in the future.