|
(Page 11 of 12) < Prev 2 3 4 5 6 7 8 9 10 11 12 Next > Category: Intrusion Detection » Network L0pht NFR IDS Modules Added 2001-10-22 These are a number of IDS modules for NFR written by members of the L0pht. AIM Automated Intrusion Monitoring System Added 2001-10-22 The Automated Intrusion Monitoring System - has been in development since June 1995 for the US Army and is intended to provide local and "theater-level" monitoring of computer attacks. The system is currently installed at the Army's 5th Signal Command in Worms, Germany and will be used to monitor Army computers scattered throughout Europe. AIMS is not available to the public. Hogwash Added 2001-10-22 Hogwash is designed to take out 95% of the stock attacks all the kiddies throw at your network. Hogwash lives inline like a firewall, but it works differently. Instead of closing ports like a traditional firewall, it drops or modifies specific packets based on a signature match. Hogwash lives directly on top of the network driver, so it doesn't require an IP stack to work. It stops attacks that can't be blocked by a traditional firewall and can be used to protect systems that are unpatchable for one reason or another. The signature matching engine is based on Snort. Archaeopteryx Added 2001-10-22 Archaeopteryx is a Passive mode OS Identification Tool. It is based off Siphon v.666 by SubTerrain. It has a great GUI and a highly configurable OS signature file. It uses POSIX threads for multi-threading (pthreads for Win32). Also requires WinPCAP Drivers. We plan to support this tool actively! So, please send all new OS signatures to us Motorola Intrusion Vision (MIV) Added 2001-10-22 Motorola Intrusion Vision (MIV) is a visualization and data management tool used with commercial and public domain intrusion detection systems. Alerts are analyzed in near-real time by the MIV Event Manager, graded by severity and categorized by type. The result is an intuitive graphical display leading to faster recognition of attacks and enabling a more timely response for better protection of your network. Snort Report Added 2001-10-22 Snort Report is an add-on module for the Snort Intrusion Detection System. It provides real-time reporting from the MySQL database generated by Snort. NFR BackOfficer Friendly Added 2001-10-22 NFRŪ BackOfficer Friendly is a useful little burglar alarm - simple, unobtrusive, and easy to install - which rings when someone rattles your doorknob. It identifies attacks from Back Orifice, one of the nastier hacking applications, as well as other sorts of scans. NFR is currently offering BackOfficer Friendly as a FREE download for personal use only. Netmon Added 2001-10-22 Netmon is a compact, easy-to-use network information utility. It displays information pertaining to the IP, TCP, UDP and ICMP protocols. It's main purpose is viewing connections made using TCP and UDP protocols from or to your computer. It's main advantages over the console based version, is the the database of common trojan ports, the complete list of well-known ports, the user configurable filters and the automatic hostname lookup. RazorBack Added 2001-10-22 RazorBack is a log analysis program that interfaces with the SNORT open source Intrusion Detection System to provide real time visual notification when an intrusion signature has been detected on the network. RazorBack is designed to work within the GNOME framework on Unix platforms. Firestorm Firewall Monitor Added 2001-10-22 Firestorm Firewall Monitor is a sister project of the firestorm NIDS. It allows you to monitor your linux ipchains firewall in real time. It utilises the linux kernel firewall netlink device. Be aware that you need to have this compiled in to your kernel to work. Most recent linux ditros have it by default. Browse by category |
|
|
Privacy Statement |
