|
Active Port Forwarder v0.8.3
|
|
Hits: 10 |
|
Date added: 09/17/2007 |
|
Active port forwarder is a software tool for secure port forwarding. It uses SSL to increase security of communication between a server and a client. Originally, it was developed to forward data point to point. However, the need for bypassing firewalls in order to connect to internally located computers influenced the further development of the project.
AF is dedicated for people, who don't have an external ip number and want to make some services available across the net.
Moreover, zlib is used to compress the transferred data.
Using one, permanent data/control channel with flow control / packet buffering provides good performance and reasonably small latency.
Running afserver does not require root priviledges, nor does it use threads or other processes. |
|
|
|
|
|
Bro
|
|
Hits: 40 |
|
Date added: 09/19/2007 |
|
Bro is an open-source, Unix-based Network Intrusion Detection System (NIDS) that passively monitors network traffic and looks for suspicious activity. Bro detects intrusions by first parsing network traffic to extract is application-level semantics and then executing event-oriented analyzers that compare the activity with patterns deemed troublesome. Its analysis includes detection of specific attacks (including those defined by signatures, but also those defined in terms of events) and unusual activities (e.g., certain hosts connecting to certain services, or patterns of failed connection attempts).
Bro uses a specialized policy language that allows a site to tailor Bro's operation, both as site policies evolve and as new attacks are discovered. If Bro detects something of interest, it can be instructed to either generate a log entry, alert the operator in real-time, execute an operating system command (e.g., to terminate a connection or block a malicious host on-the-fly). In addition, Bro's detailed log files can be particularly useful for forensics.
Bro targets high-speed (Gbps), high-volume intrusion detection. By judiciously leveraging packet-filtering techniques, Bro is able to achieve the necessary performance while running on commercially available PC hardware, and thus can serve as a cost-effective means of monitoring a site's Internet connection. |
|
|
|
|
|
Active Port Forwarder v0.8.3 Win32 Cygwin built
|
|
Hits: 30 |
|
Date added: 09/20/2007 |
|
Active port forwarder is a software tool for secure port forwarding. It uses SSL to increase security of communication between a server and a client. Originally, it was developed to forward data point to point. However, the need for bypassing firewalls in order to connect to internally located computers influenced the further development of the project.
AF is dedicated for people, who don't have an external ip number and want to make some services available across the net.
Moreover, zlib is used to compress the transferred data.
Using one, permanent data/control channel with flow control / packet buffering provides good performance and reasonably small latency.
Running afserver does not require root priviledges, nor does it use threads or other processes. |
|
|
|
|
|
|
SiteDigger™ v2.0
hot!
|
|
Hits: 86 |
|
Date added: 10/10/2007 |
|
SiteDigger 2.0 searches Google’s cache to look for vulnerabilities, errors, configuration issues, proprietary information, and interesting security nuggets on web sites.
What's New in SiteDigger 2.0
10 times more results! Now you can use FSDB / GHDB and generate 10 results per signature.
Improved user interface, help file, signature update and results page.
Decreased false positives.
Latest signatures (open webcams, credit card numbers, etc).
Ability to raw search.
How To Use SiteDigger
The tool requires Google web services API license key. Browse to http://www.google.com/apis/ and follow the instructions to get the license key.
Provide the license key at the bottom-right box on the tool.
Enter the domain / sub-domain information. (.mil, nasa.gov, usc.edu, etc).
Select search categories using signature tab.
Hit the search button. Use the export results button to view the results in tabular format.
System Requirements
Windows .NET Framework (can be installed using Windows Update) |
|
|
|
|
|
|
IPv4Trace
|
|
Hits: 20 |
|
Date added: 10/17/2007 |
|
A Win32 C++ programming library port of the OpenBSD 2.8 kernel-land IPv4 fragment reassembly implementation.
Copyright 2003 (c) by Foundstone, Inc.
http://www.foundstone.com
Network monitoring software such as IDS typically examines only complete IP datagrams. Thus, attackers are able to fragment their IP traffic to pass through corporate networks undetected and bypass perimeter security devices. While most network monitoring software like IDS is now capable of handling fragmented traffic, intruders still often attempt this type of attack that can bypass IDS and take systems out of commission, or result in information being stolen or corrupted.
As part of its new charter, Foundstone Labs created IPv4Trace, a Win32 C++ programming library. Because IPv4Trace is a Win32 object-oriented port of the OpenBSD 2.8 kernel-land IPv4 fragment reassembly implementation, Win32 programmers can now use the tool to reassemble fragmented IPv4 traffic in programs that process captured network traffic, allowing them to proactively circumvent an attack that can take systems out of commission or result in information being stolen or corrupted. |
|
|
|
