Crowd Control is an small, cross-platform HTTP proxy (a fork of the elhttp project) designed for systems with little RAM, such as a home router. It can filter URLs using SquidGuard blocklists, and has the unique ability to filter HTTPS domains as well.
DAXFi is a Python package that helps configure several different kinds of firewalls in a consistent way. The rules are described in XML. It comes with a Python package, useful to build other applications and includes some useful example programs.
The DMOZ white/blacklist generator is a Perl script to convert the RDF download file from the DMOZ website into one or more whitelists compatible with the SquidGuard and Dan's Guardian web content filters.
The Distributed Intrusion Detection System.
FireWise Utilities (FWU) is a suite of tools for dynamically generating firewall tables in either binary or script format for several operating systems. Features in dev: iptables, ip6tables, ipfw, pf, SHA2 bin hashing and LZO bin compression
This project is aimed to build a management console interface for FINDIK project.
Very Simple Perl based (version 5.8.4) firewall filter manager for Juniper Network routers running the JUNOS OS 6.0 or better. Date based scheduler for opening holes in a firewall filter. The schedule db is kept in flat delimited text file. Config of
Firewall Backup and Analysis Tool (fBat) is a platform independent tool to manage initially Cisco ASDM FWSMs, but will be able in due time to analyze also IPTables (Netfilter) as well as IPF and PF rules. Others will (hopefully) be added along the way.
The Firewall Tester is a tool designed for testing firewalls' filtering policies. It includes an Intrusion Detection System testing feature, along with a packet generator tool and a sniffer. Unlike common firewall testing tools or packet generators, fte
Frankenwall is a bash shell script intended to create a highly secure IPTables based linux firewall/router with QOS/traffic shaping/bandwidth management. Be certain you know EXACTLY what your network needs before using Frankenwall. Wimps need not apply.
FwPlatinum provides real time data analysis of CheckPoint FireWall-1 connection logs. Data is stored for up to 2 years, and is accessed by CGI generated graphs which can drill down to the specific time that you are interested in.
GTCop Professional Security Appliance aims to provide a powerful tool for satellite communications, with enhanced QoS and bandwidth controls. As derived from IPCop Firewall, it is a stable, secure, easy to configure and maintain GNU/Linux firewall box.
Hank is a scalable, extensible, modular, threaded user-space program to handle all your packet juggling needs. It'll analyze, report, and act on network traffic in any protocol, at any OSI layer, at any nesting depth. And it'll do it damned fast.
Hogwash is an inline packet scrubber that uses Snort's (www.snort.org) detection engine to drop malicious packets before they reach the target machine.
The IIOP Toolset provides a graphical user interface to analyze end-to-end connectivity thru firewalls and NAT-gateways between the location of CORBA client and the service endpoint of the CORBA server.
IPFWstats is a suite of shell, perl and PHP scripts to count network traffic on a per user basis on a server using the FreeBSD IPFW firewall. Statistics are imported into a MySQL database daily and can then be viewed using a PHP script in a web browser
This script reads your iptables-based firewall configuration and displays your rules in the order in which packes will actually traverse them. Output is intuitive while closely resembling that of iptables-save, and indicates table ownership of rules, etc
InSecT - Invincible Security Technology - an intelligent firewall and intrusion detection system
Infect is a network traffic classification tool, that classifies TCP protocols. The classification is based on ML techniques. Scen: Train/Recognize arbitrary protocols (SSH, HTTPS..), Detect policy violations (e.g. tunnels)
IPFC is a distributed management solution for security module (firewall, nids). Security module can be packet-filtering (ipfw,netfilter,ipf ...), NIDS or any other servers (syslog...) or embedded devices.
A portsentry clone written in java designed to run on any platform. You be able to give CLI for blocking access after detection (ie. shell, cmd, bat, etc..), Customizable for all ports on UDP,TCP
Java Port Mapping between 2 hosts. Put up a server on your local network and share it with the outside network in a secure way. A \"server proxy\" network tool. Share one IP with multiple servers.
Kwickserver is a do-it-yourself Firewall appliance optimized for educational use, but can be used in all other scenarios. It installs automatically from CD on your HD and is administered via webinterface. Download it from the project homepage!
A collection of PHP scripts to manage a gateway server using Linux's Netfilter (iptables) & ISC's DHCPd v3. It allows mac address restriction and web-based configuration.
LanBiz is a free, Open Source Server Suite, mostly fitted for SOHO (Small Office/Home Office) environments. The final LanBiz will include: an internet gateway/firewall, proxy, mail, file/print, fax/telephony server and more!