< Prev 6 7 8 9 10 11 12 13 14 15 16 Next >
Automated Password Generator (APG)
Automated Password Generator is a set of tools for random password generation including a standalone password generator, an RFC972 password generation server, and a Perl client for the password generation server. These feature a built-in X9.17 random number generator, and 35 modes of password generation, including pronounceable password generation.
Dante is a free implementation of the proxy protocols socks version 4, socks version 5 (rfc1928), and msproxy. It can be used as a firewall between networks. The package consists of two parts, a socks server and a proxy client which supports socks, msproxy, and HTTP proxies. Commercial support is available.
Rate is a Swiss-Army-knife bandwidth measurement tool. Its primary application is calculating the bandwidth used by packets matching a given BPF packet filter expression, which can really help a network administrator see what is happening at a software-based router at the moment. Administrators can measure the traffic generated by a single host or by a whole subnet, and measure HTTP traffic, broadcast traffic, quake traffic, etc. It can also be used for generating per-IP statistics and for determining nodes that generate highest traffic; it has a special operation mode for it. Additionally, it is able to extract strings from packets based on a POSIX regular expression.
Socat is a relay for bidirectional data transfer between two independent data channels. Each of these data channels may be a file, pipe, device (terminal or modem, etc.), socket (Unix, IP4, IP6 - raw, UDP, TCP), a client for SOCKS4, proxy CONNECT, or SSL, etc. It provides forking, logging, and dumping, different modes for interprocess communication, and many more options. It can be used, for example, as a TCP relay (one-shot or daemon), as a daemon-based socksifier, as a shell interface to Unix sockets, as an IP6 relay, for redirecting TCP-oriented programs to a serial line, or to establish a relatively secure environment (su and chroot) for running client or server shell scripts with network connections.
simplemon is a Perl script for monitoring processes (and their UID/GID) and free disk space. It generates carefully formatted mail, which is suitable for sending via SMS. It supports Solaris and FreeBSD currently.
chkrootkit is a tool to locally check for signs of a rootkit. It contains a chkrootkit: shell script that checks system binaries for rootkit modification. The following tests are made: aliens, asp, bindshell, lkm, rexedcs, sniffer, wted, z2, amd, basename, biff, chfn, chsh, cron, date, du, dirname, echo, egrep, env, find, fingerd, gpm, grep, hdparm, su, ifconfig, inetd, inetdconf, identd, killall, login, ls, mail, mingetty, netstat, named, passwd, pidof, pop2, pop3, ps, pstree, rpcinfo, rlogind, rshd, slogin, sendmail, sshd, syslogd, tar, tcpd, top, telnetd, timed, traceroute, and write. ifpromisc.c checks whether the interface is in promiscuous mode, chklastlog.c checks for lastlog deletions, chkwtmp.c checks for wtmp deletions, check_wtmpx.c checks for wtmpx deletions (Solaris only), and chkproc.c checks for signs of LKM trojans.
Sudoscript is a pair of Perl scripts (sudoscriptd/sudoshell) that provide an audited root shell using sudo.
Monitoring Application for Resources and Servers
MARS is a host based system monitoring tool. It contains a distributed agent, SPOT, which is placed on each host. The MARS server can then obtain information about each of the machines the agent is running on, including status, load information, disk activity and memory information. MARS is Java based, and should run on any Unix supporting Java, as well as Microsoft Windows products.
pdfcrypt allows you to set permissions on a PDF file. For example, you can publish a document without permitting users to print it. The button to print the file will be disabled in the Acrobat Reader application. It can be used as a batch application to set permissions on a large group of PDF files, or as a filter in a Unix pipeline, or within a CGI application. Only binary executables are distributed, but the original Perl source code may be requested.
Shell Intrusion Detection
SID is a Shell Intrusion Detection system. The kernel part plugs into a terminal-processing subsystem and logs hashed terminal lines. The user part reads log entries (hashes), consults a list of allowed entries, and takes appropriate action upon unexpected log entries.
Browse by category