L0T3K, Digital Girlie Juice
Published on 2006-08-23 - by Loren Bandiera, ©Loren Bandiera.
<p>Sussen is a tool that checks for vulnerabilities and configuration issues on computer systems. It is based on the Open Vulnerability and Assessment Language.</p>
Published on 2005-09-06 - by Neil Winton, ©Neil Winton.
<p><strong>Zebedee</strong> is a simple program to establish an encrypted, compressed <q>tunnel</q> for <acronym xml:lang="en" lang="en" title="Transmission Control Protocol">TCP</acronym>/<acronym xml:lang="en" lang="en" title="Internet Protocol">IP</acronym> or <acronym xml:lang="en" lang="en" title="User Datagram Protocol">UDP</acronym> data transfer between two systems. This allows traffic such as telnet, <acronym xml:lang="en" lang="en" title="File Transfer Protocol">FTP</acronym> and X to be protected from snooping as well as potentially gaining performance over low-bandwidth networks from compression.</p>
Published on 2005-09-09 - by Andrea Frigido, ©Andrea Frigido.
<p>Turtle Firewall is a software which allows you to realize a Linux™ firewall in a simply and fast way.</p> <p>It's based on Kernel 2.4.x and Iptables. Its way of working is easy to understand: you can define the different firewall elements (zones, hosts, networks) and then set the services you want to enable among the different elements or groups of elements.</p> <p>You can do this simply editing a <acronym xml:lang="en" lang="en" title="eXtensible Markup Language">XML</acronym> file or using the comfortable web interface Webmin.</p>
Published on 1998-09-01 - by btx, ©btx.
<p><strong>K-Arp-Ski</strong> is a project that started with the intention of being a simple network mapper and misuse detector. It has since turned into a decent sniffer with a Gtk interface. For those of you who are interested, the name came from the Fat Boys rapper Kool Rock-Ski. I don't know why I chose his name, as he wasn't even my favorite of the Fat Boys (I liked the late Darren <q>The Human Beat Box</q> Robinson). But Kool Rock-Ski was pretty badass.</p>
Published on 2003-11-07 - by Emil Mikulic, ©Emil Mikulic.
<p><strong>darkstat</strong> is a network traffic analyzer. It's basically a packet sniffer which runs as a background process on a cable/DSL router and gathers all sorts of useless but interesting statistics.</p>
Published on 2005-02-11 - by iceman__, ©iceman__.
<p><strong>Wepdecrypt</strong> is a Wireless <acronym lang="en" xml:lang="en" title="Local Area Network">LAN</acronym> Tool written in c which guesses <acronym lang="en" xml:lang="en" title="Wired Equivalent Privacy">WEP</acronym> Keys based on a active dictionary attack, key generator, distributed network attack and some other methods, it's based on wepattack and <acronym lang="en" xml:lang="en" title="GNU General Public License">GPL</acronym> licensed.</p>
Published on 2001-09-06 - by Jonathan Lennox, ©Jonathan Lennox.
<p><strong>UDPTunnel</strong> is a small program which can tunnel <acronym lang="en" xml:lang="en" title="User Datagram Protocol">UDP</acronym> packets bi-directionally over a <acronym lang="en" xml:lang="en" title="Transmission Control Protocol">TCP</acronym> connection. Its primary purpose (and original motivation) is to allow multi-media conferences to traverse a firewall which allows only outgoing <acronym lang="en" xml:lang="en" title="Transmission Control Protocol">TCP</acronym> connections.</p>
Published on 2005 - by Lars Brinkhoff, ©Lars Brinkhoff.
<p><strong>httptunnel</strong> creates a bidirectional virtual data connection tunnelled in <acronym lang="en" xml:lang="en" title="Hypertext Transfer Protocol">HTTP</acronym> requests. The <acronym lang="en" xml:lang="en" title="Hypertext Transfer Protocol">HTTP</acronym> requests can be sent via an <acronym lang="en" xml:lang="en" title="Hypertext Transfer Protocol">HTTP</acronym> proxy if so desired.</p>
<p>This can be useful for users behind restrictive firewalls. If <acronym lang="en" xml:lang="en" title="World Wide Web">WWW</acronym> access is allowed through a <acronym lang="en" xml:lang="en" title="Hypertext Transfer Protocol">HTTP</acronym> proxy, it's possible to use httptunnel and, say, telnet or <acronym lang="en" xml:lang="en" title="Point-to-Point Protocol">PPP</acronym> to connect to a computer outside the firewall.</p>
<p><strong>httptunnel</strong> is written and maintained by <strong>Lars Brinkhoff</strong>. See the file <samp>AUTHORS</samp> in the tarball for more information about contributors to this package.</p>
Published on 2005-09-10 - by Inferno Nettverk, ©Inferno Nettverk.
<p><strong>Dante</strong> is a circuit-level firewall/proxy that can be used to provide convenient and secure network connectivity to a wide range of hosts while requiring only the server <strong>Dante</strong> runs on to have external network connectivity.</p> <p>Once installed, <strong>Dante</strong> can in most cases be made transparent to the clients while offering detailed access control and logging facilities to the server administrator.</p>
Published on 2005-02-01 - by Sam Freiberg, ©Sam Freiberg.
<p><acronym lang="en" xml:lang="en" title="Snort Alert Monitor">SAM</acronym> is a program to monitor (in real-time) the number of alerts generated by Snort™. Having recently set up Snort™ and ACID I felt like there was something missing. Snort™ was great for identifying suspicous traffic and ACID was great for digging in to the details but I needed something that was a little higher overview and able to sounds alarms if certain conditions were met. For instance if I was attacked 100 times in a 5 minutes period. SAM does not replace Snort™ or ACID but rather it compliments them.</p>
Published on 2005 - by Heinz Knutzen, ©Heinz Knutzen.
<p><strong>NetSPoC</strong> is a tool for security managment of large computer networks with different security domains. It generates configuration files for packet filters controlling the borders of security domains.</p>
<p><strong>NetSPoC</strong> provides its own language for describing the security policy and topology of a network. The security policy is a set of rules that state which packets are allowed to pass the network and which not. <strong>NetSPoC</strong> is topology aware: a rule for traffic from A to B is automatically applied to all managed packet filters on the path from A to B.</p>
Published on 2005-02-04 - by Gregoire Barbier, ©Gregoire Barbier.
<p>nmbscan scans the shares of a SMB/NetBIOS network, using the NMB/SMB/NetBIOS protocols. It is useful for acquiring information on a local area network for such purposes as security auditing.</p>
<p>It can obtain such information as NMB/SMB/NetBIOS/Windows hostname, IP address, IP hostname, ethernet MAC address, Windows username, NMB/SMB/NetBIOS/Windows domain name, and master browser.</p>
<p>It can discover all the NMB/SMB/NetBIOS/Windows hosts on a local area network by using the hosts lists maintained by master browsers.</p>
Published on 2005-01-26 - by Solar Designer, ©Solar Designer.
<p><strong>pam_passwdqc</strong> is a simple password strength checking module for PAM-aware password changing programs, such as passwd. In addition to checking regular passwords, it offers support for passphrases and can provide randomly generated ones. All features are optional and can be (re-)configured without rebuilding.</p>
Published on 2004-12-12 - by Chris Lowth, ©Chris Lowth.
<p>ROPE is a "match module" for Linux IpTables that allows packets to be matched using highly flexible rules, written in a simple purpose-designed scripting language. It was written initially to provide support for the next phase of the P2PWall project for controlling various styles of peer-to-peer application traffic, but is much broader than this in it's possible uses. See the Basics page for a tutorial-style overview.</p>
Published on 2005-01-27 - by Alex Zimin, Greg Kuhnert, Adam Carmichael, ©Alex Zimin, Greg Kuhnert, Adam Carmichael.
<p>Inprotect is a web interface for Nessus and Nmap security scanners, released under GNU/GPL license. This version has three major enhancements: An inproved Scheduler, An online knowledge base, and an enhanced diagnostic logging system.</p>
