|
(Page 3 of 6) < Prev 1 2 3 4 5 6 Next > Platform: Ultrix Courtney Added 2001-10-22 Courtney is a "ids" system, which monitors for SATAN probes and attacks. It receives its input from tcpdump, counting the number of new services a machine originates within a time window. If the threshold is exceeded by a host, it is flagged as a potential SATAN host. scan-detector Added 2001-10-22 Scan-detector is a simple detector for automated scans of TCP/ UDP ports on a host. It works by opening a socket on specified ports, and watches for a connection. When a connection is established, the host name, source port, destination host, destination port, and a number of other pieces of information are logged. Flog ftpd log analyzer Added 2001-10-22 Flog is a simple ftpd log file analysis tool. It generates basic statistics about traffic and server utilization, which it outputs to a file. TCP Wrappers Added 2001-10-22 The tcp_wrapper package by Wietse Venema. Formerly called log_tcp. Allows monitoring and control over who connects to a hosts TFTP, EXEC, FTP, RSH, TELNET, RLOGIN, FINGER, and SYSTAT ports. Also includes a library so that other programs can be controlled and monitored in the same fashion. Libpcap Added 2001-10-22 This is a handy little library which provides a packet filtering mechanism based on the BSD packet filter (BPF). Most notably, tcpdump needs this to work, and there is also a perl module (still in beta) which can use this as well. In plain english, if you want to write your own network traffic analyzer, this is the place to start. CFS Added 2001-10-22 The cryptographic file system (also known as CFS) is a way of storing encrypted files and entire directories. It runs as a local nfs server. Code Breakers Workbench Added 2001-10-22 The Code Breaker's Workbench - break crypt(1) encrypted files. Traceroute Added 2001-10-22 Traceroute is a system administrators utility to trace the route ip packets from the current system take in getting to some destination system. See the comments at the front of the program for a description of its use. This program a) can only be run by root (it uses raw ip sockets). b) REQUIRES A KERNEL MOD to the raw ip output code to run. Npasswd Added 2001-10-22 Npasswd is a pretty-much-plug-compatable replacement for passwd(1). This version incorporates a password checking system that disallows simple-minded passwords. dig Added 2001-10-22 Dig (domain information groper) is a flexible command line tool which can be used to gather information from the Domain Name System servers. Dig has two modes: simple interactive mode which makes a single query, and batch which executes a query for each in a list of several query lines. All query options are accessible from the command line. Browse by category |
|
|
Privacy Statement |
