The purpose of the Hi-Performance Protocol Identification Engine/HiPPIE is to analyze network traffic, and determine what protocol is in use within a given session based on packets sent to the engine. Linux kernel mod with support for iptables/netfilter
Zelkova is a firewall with capabilities of Intrusion Prevention System. It is based on Linux kernel, but does not use the traditional netfilter packet filter firewall.
Honeybrid is a network application built to 1) administrate network of honeypots, and 2) transparently redirect live network sessions (TCP or UDP) from one primary destination host to a secondary destination host.
Easy to use firewall configuration script, featuring statefull connection tracking, bandwidth limiting and bandwidth logging.
IPFIRE-wall is a framework that implements a network firewall. It can be used in desktop systems and in simple network configurations, providing a friendly graphical interface and a simple installation procedure. Also unprivileged users can personalize.
Simple-to-use, dynamic, rule-based firewall addition. Uses QUEUE/userspace to dynamically approve or drop packets based on custom rules. With frequency caching, friend/foe indication, loose IP matching, and customizable logging.
IPTables::IPv4 is a Perl interface for managing the kernel-level Netfilter subsystem using Perl scripts.
iptables-TNG ( The Next Generation of iptables) An environment that can use different packet classification algorithm (eg. tuple) to support large rulesets (more than 10,000 rules) for high bandwidth networks.
ISP-fW is a firewall script that provides port forwarding, packet filtering, stateful packet inspection, port redirection, masquerading, SNAT/ DNAT, TOS, and never the last it generates htb rules for bandwich management. Includes: htb-tools, mipclass
Internet Abuse Tracker(c) aka IA Tracker(c) is a companion project for SecurityStalker(c), developed by the same group. This software will track/analyze and report to users/admins of Internet abuse associated network/email activity and take action.
intranetadmin is a group of scripts to administrate a intranet. it's based on FreeBSD, PHP, Perl, C and shell scripts.
IPFC is a distributed management solution for security module (firewall, nids). Security module can be packet-filtering (ipfw,netfilter,ipf ...), NIDS or any other servers (syslog...) or embedded devices.
Iptables FIlter Generator is a easy way to make iptables rules..
KFW aims to be a simple to use but powerful Firewall/IDS. That will have a GUI designed since its origins, and will use state of the art firewalling and intrusion detection techniques to achieve maximum performance.
The Kernel Intrusion Detection System-KIDS, is a Network IDS, where the main part, packets grab/string match, is running at kernelspace, with a hook of Netfilter Framework. The project is not ready for use, then incomplete pieces of code may be found.
Krome Shield is designed to fool remote fingerprinting tools (using ICMP & TCP), making them think you're running a different OS. It runs under Linux, using the netlink device and ipchains. In the future it will act like an IDS too, detecting attacks a
Linmkfwall is able to set up a firewall for your linux box ( ipfwadm, ipchains and iptables are supported ). The firewall rules are put in a Unix script shell file that you have to execute as root.
Linux ICMP Knock Daemon is a simple port knocking system based on ICMP. It use sha2 for authentication: a hash from client IP address and a secret pass phrase, this is not really an authentication mechanism but it work's.
Simulating an IP packet traversing the Linux kernel.
lpt simulates an IP packet traversing the Linux kernel and prints out what happens as it progresses through the security features of the kernel and quickly determine wether or not the packet will pass.
nftables-plus userspace utilities
A replacement firmware distribution for the 3com 3CRADSL72 a.k.a 3com wireless 11g (distributed by Ya.com) and its identical twin, the SMC7804WBRA, with an ucLinux kernel based system and associated system tools.
linux4501 is a linux software distribution for the soekris net4501 single board PC (see www.soekris.com). It fits on a 16 or 32 MB Compactflash card and turns the 4501 into a firewall and (dsl) router. It can also be used as a starting point for your ow
Client-Server mechanism to manage Linux-netfilter-box using other firewall platform syntax. Currently implemented interpreter for Cisco PIX.
LnxFire is a Linux & Gnome firewall tool for the small business owner. Use the firewall creation wizard to quickly create a basic firewall. Featuring dynamic rule modifiers, proactive monitoring, reporting, email alerts and auto lockout of port scanners.
LogBox is a web based system for real time firewall log analysis. It consists of a daemon for data gathering, a database for log storage and a web interface for user interaction. An extension to general syslog usage is possible in the future.