|
Scanlogd - A port scan detection tool
|
|
Hits: 7 |
|
Date added: 03/03/2006 |
|
scanlogd is a TCP port scan detection tool, originally designed to illustrate various attacks an IDS developer has to deal with.Thus, unlike some of the other port scan detection tools out there, scanlogd is designed to be totally safe to use.
The use of libpcap alone is discouraged. If you're on a system other than Linux and/or want to monitor the traffic of an entire network at once, you should be using libnids in order to handle fragmented IP packets. |
|
|
|
|
|
|
IFtop v0.16
|
|
Hits: 5 |
|
Date added: 03/04/2006 |
|
IFtop does for network usage what top(1) does for CPU usage. It listens to network traffic on a named interface and displays a table of current bandwidth usage by pairs of hosts. Handy for answering the question why is our ADSL link so slow? .
Requirements
* libpcap
* libcurses |
|
|
|
|
|
|
Sniffer - By Skiddieleet
|
|
Hits: 3 |
|
Date added: 03/04/2006 |
|
A simple sniffer that outputs to plain text or html. Uses the libpcap and libdnet libraries so you will have to have those installed to compile this. It focuses only on the headers of certain protocols.
The needed libraries will be found in the libraries section |
|
|
|
|
|
Pandora
|
|
Hits: 27 |
|
Date added: 03/06/2006 |
|
Pandora Automatic Scanner for linux and Windows. Scan for all hosts in Internet. Send results of scan to email or ftp. Automatic crack passwords on closed shares and much more.
|
|
|
|
|
|
|
Gradm v2.1.7
|
|
Hits: 3 |
|
Date added: 03/12/2006 |
|
Grsecurity is an innovative approach to security utilizing a multi-layered detection, prevention, and containment model. It is licensed under the GPL.
It offers among many other features:
* An intelligent and robust Role-Based Access Control (RBAC) system that can generate least privilege policies for your entire system with no configuration
* Change root (chroot) hardening
* /tmp race prevention
* Extensive auditing
* Prevention of entire classes of exploits related to address space bugs (from the PaX project)
* Additional randomness in the TCP/IP stack
* A restriction that allows a user to only view his/her processes
* Every security alert or audit contains the IP address of the person that caused the event |
|
|
|
