< Prev 6 7 8 9 10 11 12 13 14 15 16 Next >
Papillon is a loadable kernel module designed for the Solaris operating environment 8. It was inspired by the Openwall linux kernel patch and adds most of the functionality of this patch to the Solaris kernel. Functionality includes a restricted proc, chroot environment protections, secure STDIO file descriptors, restricted sym- and hardlinks, and more.
OpenSSL for Ruby
The OpenSSL for Ruby project (OSSL) binds the well known OpenSSL library to the fully objective scripting language Ruby.
Arpwatch is a tool that monitors ethernet activity and keeps a database of ethernet/ip address pairings. It also reports certain changes via email. Arpwatch uses libpcap, a system-independent interface for user-level packet capture. Before building tcpdump, you must first retrieve and build libpcap, also from LBL, in: ftp://ftp.ee.lbl.gov/libpcap-*.tar.Z.
Xautolock monitors console activity under the X window system, and fires up a program of your choice if nothing happens during a user configurable period of time. You can use this to automatically start up a screen locker in case you tend to forget to do so manually before having a coffee break.
oidentd is an RFC 1413 compliant ident daemon which runs on Linux, FreeBSD, OpenBSD, and Solaris. It can handle IP masqueraded/NAT connections on Linux, FreeBSD, and OpenBSD, and it has a flexible mechanism for specifying ident responses. Users can be granted permission to specify their own ident responses. Responses can be specified according to host and port pairs.
TransConnect is an implementation of function interposing to allow users on *nix platforms to transparenly tunnel all networking applications over an HTTPS proxy. It has been extensively tested with telnet, SSH, fetchmail, IRC, whois, Pine, Netscape, Mozilla, Evolution, etc. over squid proxy.
fsh uses lsh or ssh to establish a secure tunnel to the remote system. This takes as long as a normal connection establishment, but once the tunnel is established, fsh can reuse it to start new sessions on the remote system almost instantaneously. You get the security of ssh and the speed of rsh.
The Coroner's Toolkit (TCT)
TCT is a collection of programs that can be used for a post-mortem analysis of a UNIX system after break-in. The software was presented first during a free Computer Forensics Analysis class that we gave one year ago (almost to the day). Notable TCT components are the grave-robber tool that captures information, the ils and mactime tools that display access patterns of files dead or alive, the unrm and lazarus tools that recover deleted files, and the keyfind tool that recovers cryptographic keys from a running process or from files.
SUNrand is a Sun Solaris kernel module which provides '/dev/random' and '/dev/urandom' similar to the devices found in Linux. It has been tested on Sparc and Intel platforms running Solaris7 and Solaris8 (32bit and 64bit mode on SparcUltra). It doesn't use good random sources yet. It is rumoured that you can also find a /dev/random in the US crypto extensions for Solaris.
Proxytunnel is a program that connects stdin and stdout to an origin server somewhere in the Internet through an industry standard HTTPS proxy.
Browse by category