< Prev 1 2 3 Next >
Category: Intrusion Detection » Web
SOAPSonar Enterprise Edition
SOAPSonar Enterprise Edition is a SOAP/XML Web Services diagnostics tools. The software performs Vulnerability Assessment and Compliance Testing of SOAP/XML based Web Services. Vulnerability Assessment enables a user to perform vulnerability discovery, risk assessment and risk mediation of an Enterprise Web Service. The software also provides Functional and Performance testing features. The software has a very rich reporting engine that enables the user to determine the risk posture of a Web Service.
Prelude Hybrid IDS Framework
Prelude is a Hybrid IDS framework, that is, a product enabling all security applications, be it open-source or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard, that enables different kinds of sensors to generate events using a unique language.
Basic Analysis and Security Engine (BASE)
BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system.
PHP_Sec (Wasp Project)
PHP_Sec is a library for PHP, designed to detect possible Web attacks, use encryption and log information quickly and easily. The library acts as an IDS but at script level detecting possible SQL Injection, Cross Site Scripting, Directory Traversal, Evasion Techniques and various other vulnerabilties. By adding 2 lines of code we can protect any application PHP application in an easy way.
IAMDOH is a tool designed to increase the reliability of an IDS by reducing the number of false positives. It uses existing reliable tools like Nmap, Nessus, and Amap to validate IDS alerts based on the following criteria and techniques: OS identification, service identification, port scanning, vulnerability scanning, online CVE and bug interpretation, and server importance weighting. It only works with Snort at the moment.
ModSecurity is an open source intrusion detection and prevention engine for web applications. It operates embedded into the web server, acting as a powerful umbrella - shielding applications from attacks. ModSecurity supports Apache (both branches) today, with support for Java-based servers coming soon.
The Viper IDS is an IDS sensor that can be used stand-alone or as an add-on to the Wolverine Firewall and VPN server. It can log all alert information to a remote MySQL database that can be analyzed by applications such as ACID, or can be used with Wolverine to provide real-time responses to potential threats by dynamically adjusting perimeter firewall rule sets. It uses Snort for attack signature detection.
SnortCenter is a Web based snort management module.It can handle multiple remote sensor. You can manage and edit the snort config and rule file, auto update with the latest rules without altering your own modifications.
CHX-I Universal Application Firewall and Intrusion Detection Engine.
CHX-I is a TCP Application firewall. New in version 1.7: - SSL taffic analysis engine allows for in-transit TCP payload firewalling - SSL server side transparent encryption allows encryption of TCP application services - In-transit TCP packet data modification allows for manipulation of sensitive or undesired data - Asynchronous reverse data flow search allows for traffic direction specifications - Multiple engine actions on traffic flow such as Drop, Log and Replace
This program parses IIS or Apache web server logfiles then create possible intrusions report.
Browse by category