A Linux port of the OpenBSD/FreeBSD Cryptographic Framework (OCF). This port aims to bring full asynchronous HW/SW crypto acceleration to the Linux kernel, OpenSwan, OpenSSL and applications using DES, 3DES, AES, MD5, SHA, PublicKey, RNGs and more.
wipfw - IPv4 packet filter and traffic shaper for Windows based on IPFW (FreeBSD firewall).
The Nemesis Project is designed to be a command line based, portable human IP stack for UNIX-like and Windows systems. The suite is broken down by protocol, and should allow for useful scripting of injected packets from simple shell scripts.
Intelligently block brute-force attacks by aggregating system logs
SSHGuard protects hosts from brute-force attacks against SSH and other services. It aggregates system logs and blocks repeat offenders using several firewall backends, including iptables, ipfw, and pf.
OPNsense is an open source, easy to use firewall and routing platform
OPNsense is an open source, easy to use and easy to build FreeBSD based firewall and routing platform. OPNsense includes most of the features available in expensive commercial firewalls, and more in many cases. Mission statement of the project: "Give users, developers and businesses a friendly, stable and transparent environment. Make OPNsense the most widely used open source security platform."
IDS + IPS for RouterOS (mikrotik)
This project reads logs from your mikrotik firewall and creates an address list with detected attackers
Transproxy is used in conjunction with the FreeBSD (ipfw and ipnat) or Linux transparent proxy feature (ipfwadm, ipchains and iptables), to transparently proxy HTTP requests.
Snort2Pf is a small Perl daemon which greps Snort's alertfile and blocks the "naughty" hosts for a given amount of time using pfctl.
Plugdaemon is a tool that is inspired by, but not based on, programs like plug-gw. It was originally a simpler alternative, but the connection balancing code and other features makes it a lot more versatile.
efw-toolbox. Is a collection of applications/scripts and other odds and ends that are useful to have. These are currently not available in the current Endian Firewall Project. This project is intended to work alongside with Endian Firewall project .
SSS is a simple socks server written in perl that implements the SOCKS v5 protocol.
EasyBSD is a modular automation script designed to assist in the extensive post installation process that is required in FreeBSD. The following are modules that are included with EasyBSD, Checks, Update, Security, Networking, Firewall, and more...
Jateway is a general purpose TCP/IP connection proxy
Jateway is a general purpose TCP/IP connection proxy. Jateway accepts connections on arbitrary ports (like 80 or 443) and specific host:port combinations (like WANIP1:443 and WANIP2:443) for multi-interface systems Supports single TCP connections (like MySQL), and multi-TCP connections like HTTP and HTTPS, and fowards them to arbitrary host/port combinations.
AGT is a powerful console frontend to iptables, supporting nearly all of the iptables extensions. All options can be specified in a configuration file with similar syntax to 'ipf' and 'ipfw'.
track log files, block intrusions, and much more
Log2table allows you to continuously monitor your logfiles. You can trigger actions when a specific message comes in your audited logfiles or when a specific number of occurences are present.
Managing OpenBSD's Packet Filter with Python
py-PF is a pure-Python module for managing OpenBSD's Packet Filter. It aims to combine the flexibility of PF's C API and the power of Python, making it easier to manage PF data and to integrate firewalling capabilities in more complex applications.
Amber - a "grey list" for Qmail. Amber sits in the tcpserver chain, not accepting or rejecting mail but deferring connections from new IP addresses for some time (default five minutes) before it starts accepting mail from them.
Anoubis is a Security Suite which implements a secured environment for applications. The core of the suite is an Application Firewall alongside with a Sandbox. Mechanisms to assure the authenticity of files, directories and applications are provided.
Fork of the OpenBSD spamd for the FreeBSD operating system. See http://www.openbsd.org/spamd/ for the original spamd documentation. Please, report there only FreeBSD related bugs. If you want join to the project - write mail to the samm user.
FreePFW is a web interface to IPFW firewall on FreeBSD servers. It allows authorized users, from authorized hosts changing *specific* rules at the firewall, granting remote access to the server.
INSTALL7 is a post installation script that automates several key areas and procedures involved in updating and securing FreeBSD. Updating the source and ports, securing system, and the configuration of pf firewall.
iptables based firewall for Linux
OpenBSD IPsec based VPN
This project aims to create simple site to site VPN using OpenBSD's native isakmpd based IPsec implementation
PfPro is a "fat" client for managing configurations for PF-based firewalls. It is a graphical client-side application for managing multiple firewall configurations.
Proxmox Firewall (Proxwall) is a flexible Linux firewall based on Shorewall and many other open source tools. It is designed to install on commodity hardware within minutes. It can handle complex and fast changing network environments.