This tools help you migrating existing Checkpoint Firewall 1 Installation and Rulesets to Linux or *BSD based Firewall. This is done by converting the Rulebase- and the Objects- Database from Checkpoint to the FirewallBuilder XML Format.
CartoReso intends to facilitate enterprise computer network mapping.
This project will serve as a central hosting/bug tracking center for modifications to the SmoothWall.org firewall distribution. Support and information for the "mods" posted here can be found on the SmoothWall.org forums, the SmoothWall.org IRC server, or
The IP Personality project is a patch to the Linux kernels that adds netfilter features: it enables the emulation of other OSes at the network level, thus fooling remote OS detection tools such as nmap that rely on network fingerprinting.
Dave's Naughty Stuff Blocker. This is an open source solution to allow administrators to filter and redirect selected "inappropriate" sites based on a list of specific sites and/or strings.
Live Security/Forensics Linux Distribution, built from scratch and packed full of tools useful for vulnerability analysis, penetration tests, and forensic analysis.
Traffic Control is a Linux toolbox to control squid, NAT, and other services traffic limits. TF uses Linux iptables to count traffic. This utility consists of two parts. The first is server side (written in Perl) and the second part is the interface.
Bunny Proxy is a light web proxy for across filtering.
RTelnet is a reverse Telnet, it's increadably useful to get behind firewalls and NAT's or routers running ip masqurading. very useful for remotely admin someones PC remotely when they don't know how to do anything like opening their firewall.
Actim is an application written in python that allows sending/receiving files and calling command lines via email. (under GPL license) For example, if your home PC does not have any access to your office workstation which is behind the company firewall.
Antivirus base on packets depending on protocol analysis.
The goal of the project is to build a framework to allow Astaro firewall users to install optional software packages on their firewalls. (Astaro is a Linux-based firewall available from www.astaro.com.) Such a framework includes a package-management syst
Program deploy a firewall, that is custom built, and is dynamic to the needs of the host. -- -- moved to www.siology.net
BMHT is a method of target tracking that allows decisions to be adjusted and refined until enough data has been collected to ensure a level of confidence.
Firewall and Security solutions for your Cobalt Servers. Tired of being port scanned? Sick of foreign hackers installing root kits? Come check it out.
CompactBSD is a powerful set of tools that allow you to build your own customized, lightweight distribution of OpenBSD and then burn it onto compact flash so that it can be run on an embedded PC platform such as FatPort's FatPoint (www.fatport.com)
efw-toolbox. Is a collection of applications/scripts and other odds and ends that are useful to have. These are currently not available in the current Endian Firewall Project. This project is intended to work alongside with Endian Firewall project .
FWIPSEC is a set of scripts and code that control iptables/netfilter, FreeS/WAN, squid, and squidguard (a few other services are being considered) on a Linux platform. It is designed to be used as a firewall first with VPN & proxy services added second.
FireWise Utilities (FWU) is a suite of tools for dynamically generating firewall tables in either binary or script format for several operating systems. Features in dev: iptables, ip6tables, ipfw, pf, SHA2 bin hashing and LZO bin compression
FWInit is a simple firewall initialization utility coded in Python with Python configuration scripts with access to useful functions for manipulating the iptables filters and keeping the same state between invocations.
A Webmin module for maintaining the FreeBSD Firewall. This module allows the user to configure the FreeBSD firewall via webmin. Operating systems supported: Freebsd 4.7 and 5.x This module runs under webmin > 1.070
Hank is a scalable, extensible, modular, threaded user-space program to handle all your packet juggling needs. It'll analyze, report, and act on network traffic in any protocol, at any OSI layer, at any nesting depth. And it'll do it damned fast.
Simple-to-use, dynamic, rule-based firewall addition. Uses QUEUE/userspace to dynamically approve or drop packets based on custom rules. With frequency caching, friend/foe indication, loose IP matching, and customizable logging.
Krome Shield is designed to fool remote fingerprinting tools (using ICMP & TCP), making them think you're running a different OS. It runs under Linux, using the netlink device and ipchains. In the future it will act like an IDS too, detecting attacks a
A collection of PHP scripts to manage a gateway server using Linux's Netfilter (iptables) & ISC's DHCPd v3. It allows mac address restriction and web-based configuration.