(Page 1 of 8)   1 2 3 4 5 6  Next >

Category: Access Control » Network

PacketFence
Added 2009-07-20
by Inverse inc.
PacketFence is a fully supported, Free and Open Source network access control (NAC) system. PacketFence is actively maintained and has been deployed in numerous large-scale institutions over the past years. It can be used to effectively secure networks - from small to very large heterogeneous networks. PacketFence has been deployed in production environments where thousands of users are involved. Among the different markets are : * banks * colleges and universities * engineering companies * manufacturing businesses * school boards (K-12) ... and many more! Released under the GPL, PacketFence offers an impressive amount of features.

Lan-Secure Security Center
Added 2008-10-04
by Lan-Secure.com
Security Center is network security software for real-time intrusion detection IDS and prevention IPS that helps to protect networks from potential intruders, unauthorized connections and malicious activities. Security Center can be connected in any network either it is switched or hubs network without the need of remote agents or special network configuration. The unique network monitoring engine provide real-time threats and vulnerabilities discovery. The built-in manual and automatic protection rules enable to enforce any network security policy with proactive blocking of network nodes that violated the security protection rules. The software can be used in distributed environment using any number of remote viewers for controlling the network security permissions and operation status. Security Center key features: Provides online network discovery. Automatic threats and vulnerabilities level discovery. Real-time manual and automatic protection rules against potential intruders. Real-time protection rules including intrusion detection IDS and prevention IPS services. Real-time nodes display for analyzing network connections and transmission rates. Real-time protection using MAC, IP, DNS name or Username attributes. Proactive blocking of networks nodes based on their threat level. Alerts forwarding using SMTP email and SNMP traps. Support wireless intrusion detection and prevention.

Solsoft ChangeManager
Added 2008-08-20
by
Solsoft ChangeManager is the only centralized, Intelligent Multivendor platform that streamlines the end to end Design and Generation of Network Security rules for Firewalls, Router, VPN, IPS’s. ChangeManager acts as a central Network Security Rule repository. It’s visual policy interface designs, generates, implements, tracks and audits your security rules for multi-vendor networks consisting of firewalls, routers, switches, VPNs and IPs. ChangeManager's Topology or Tabular interface streamlines the change management process during firewall migration and other complex security update configuration changes. Users can simply drag-and-drop a new service across their network and ChangeManager will translate this high level, business policy change request into device-level instructions providing a simple, scalable model that can represent the most complex policies. ChangeManager’s “Rules Engine” automatically optimizes, orders, inserts, checks rules for conflicts and applies these generated security configurations on the network devices effected by the rule change. Thus providing true end-to-end security rule design and auditing capability. After the acquisition of Solsoft by Exaprotect, Solsoft Policy Server, Firewall Manager and NetFilterOne were integrated into the Exaprotect security product line as Solsoft ChangeManager. Exaprotect provides centralized Configuration Management, Log Management, and Event Monitoring and Correlation solutions for enterprises and service providers with large-scale, heterogeneous network infrastructures.

Teamviewer
Added 2007-05-21
by TeamViewer GmbH
TeamViewer is a simple and fast solution for remote control, desktop sharing and file transfer that works behind any firewall and NAT proxy. To connect to another computer just run TeamViewer on both machines without the need of an installation procedure. With the first start automatic partner IDs are generated on both computers. Enter your partner's ID into TeamViewer and the connection is established immediately. With many thousand users worldwide TeamViewer is a standard tool to give support and assistance to people in remote locations. The software can also be used for presentations, where you can show your own desktop to a partner. TeamViewer also is VNC compatible and offers secure, encrypted data transfer with maximum security.

Safe Access
Added 2006-12-04
by StillSecure
Safe Access v5.0 is the industry’s most powerful, flexible network access control (NAC) solution. Customers seamlessly integrate Safe Access v5.0 into distributed environments regardless of size or complexity using single-pane-of-glass management, Enforcement Server clustering, and multi-user, role-based access. To ensure ease-of-use, Safe Access v5.0 also includes a new user interface specifically designed to support installations ranging from single sites to large enterprise-class networks.

ASDIC
Added 2006-10-13
by Mikael Kuisma
ASDIC is a system for advanced traffic and log analysis. It helps you to determine what traffic there is in your network. You can look at ASDIC as a reverse firewall. Input unstructured traffic information and output a rule set. ASDIC can analyze logs from any firewall or router, or sniff the network by itself.

ServerAngel
Added 2006-10-12
by
A port and vulnerability scanner. Audit what the internet can actually see running on your server. Use your report to harden your services against attack.

UserLock
Added 2006-09-29
by IS Decisions
UserLock secures access to Windows networks by controlling the amount of simultaneous sessions and by limiting network access per user or group. With UserLock, a network administrator can implement and enforce efficient restriction and access policies for Windows NT/2000/XP/2003 networks (LAN and WAN), and monitor and manage all sessions in real time: receive alerts, remotely disconnect or lock a user session and automatically log activity and generate precise session reports and statistics.

OpenNAC
Added 2006-08-08
by S.Boran
OpenNAC provides easy to use VLAN assignment and LAN access control for Cisco Switches and all kind of network devices (Servers, Workstations, Printers, IP-Phones, Webcams...) OpenNAC can be considered as having to phases. We have taken OpenVMPS, added a MySQL back end, a Delphi GUI, some advanced PHP control scripts, scalability, redundancy, alerting and more. This has been installed at companies with networks sizing from one hundred to 2000 machines. We will continue to market this product and offer professional support. Next, we want to make OpenNAC available to the OpenSource community. We are currently working through the existing code to remove or replace all proprietary pieces and on new database scheme to allow further extensions. We are also considering adding 802.1x support (provides better security and is not limited to Cisco switches) and moving the Delphi GUI to a web based user interface. The 'plan' is for the project to move forward to eventually become THE OpenSource Enterprise tool for dynamic VLAN assignment and network authentication. So, we wish to solicite community opinions, expertise and feedback. Are you interested in this tool, would you like to use it or even like to contribute to it (documentation, support, development, promotion, architecture, review...)? Please visit us on www.OpenNAC.net !

WinArpAttacker
Added 2006-06-25
by unshadow
WinArpAttacker 3.50 Readme Jun. 4th 2006 Author : unshadow Email : asia_message@hotpop.com Website: no, i'm looking for free website, if you have good advice you can tell me. ----------------------------------------------------------------------------- Caution: This program is dangerous, it is released just for research, any possible loss caused by this program is no relation with the author (unshadow), if you don't permit this, you must delete it immediately. If you use this program, I think you permit all of these. ----------------------------------------------------------------------------- WinArpAttacker is based on wpcap, you must install wpcap driver before running it. wpcap: http://winpcap.polito.it/install/bin/WinPcap_3_1.exe If you had installed old version of winpcap, just install WinPcap_3_1.exe overwrite it. ----------------------------------------------------------------------------- Contents 1. Overview 2. System Requirement 3. What's New 4. Getting Started 5. Known Issues 6. Revision History 7. To do ----------------------------------------------------------------------------- 1. Overview ------------------------------------ WinArpAttacker is a program that can scan,attack,detect and protect computers on local area network. The features as following: 1.1 Scan -. It can scan and show the active hosts on the LAN within a very short time (~2-3 seconds). It has two scan mode, one is normal scanning, the other is antisniff scanning. The later is to find who is sniffing on the lan. -. It can save and load computer list file. -. It can scan the Lan regularly for new computer list. -. It can update the computer list in passive mode using sniffing technology, that is, it can update the computer list from the sender's address of arp request packets without scanning the lan. -. It can perform advanced scanning when you open advanced scanning dialg on menu. -. It can scan a B class ip range in advanced scan dialg. -. It can scan acthost listed in event listview. 1.2 Attack -. It can pull and collect all the packets on the LAN. -. It can perform six attacking actions as following: (1) Arp Flood - Send ip conflict packets to target computers as fast as possible, if you send too much, the target computers will down. :-( (2) BanGateway - Tell the gateway a wrong mac address of target computers, so the targets can't receive packet from the internet. This attack is to forbid the targets access the internet. (3) IPConflict - Like Arp Flood, send ip conflict packets to target computers regularly, maybe the users can't work because of regular ip conflict message. what's more, the targets can't access the lan. (4) SniffGateway - Spoof the targets and the gateway, you can use sniffer to collect packets between them. (5) SniffHosts - Spoof among two or above targets, you can use sniffer to collect packets among all of them. (dangerous!!!!) (6) SniffLan - Just like SniffGateway, the difference is that SniffLan sends broadcast arp packets to tell all computers on the lan that this host is just the gateway, So you can sniff all the data between all hosts with the gateway.(dangerous!!!!!!!!!!!!!!) -. While spoofing ARP tables, it can act as another gateway (or ip-forwarder) without other users' recognition on the LAN. -. It can collect and forward packets through WinArpAttacker's ipforward function, you had best check disable system ipforward function because WinArpAttacker can do well. -. All data sniffed by spoofing and forwarded by WinArpAttacker ipforward function will be counted, as you can see on main interface. -. As your wish, the arp table is recovered automatically in a little time (about 5 seconds). Your also can select not to recover. 1.3 Detect -. What is the most important function, it can detect almost all attacking actions metioned as above as well as host status. the event WinArpAttacker can detect is listed as following: SrcMac_Mismath - Host sent an arp packet, its src_mac doesn't match,so the packet will be ignored. DstMac_Mismath - Host recv an arp packet, its dst_mac doesn't match,so the packet will be ignored. Arp_Scan - Host is scanning the lan by arp request for a hosts list. Arp_Antisniff_Scan - Host is scanning the lan for sniffing host,thus the scanner can know who is sniffing. Host_Online - Host is online now. Host_Modify_IP - Host modified its ip to or added a new IP. Host_Modify_MAC - Host modified its mac address. New_Host - New gost was found. Host_Add_IP - Host added a new ip address. Multi_IP_Host - Host has multi-ip addresses. Multi_Mac_Host - Host has multi-mac addresses. Attack_Flood - Host sends a lot of arp packets to another host ,so the target computer maybe slow down. Attack_Spoof - Host sends special arp packets to sniff the data two targets , so the victims' data exposed. Attack_Spoof_Lan - Host lets all host on the lan believe that it's just a gateway, so the intruder can sniff all hosts' data to the real gateway. Attack_Spoof_Ban_Access - Host told host that host has a inexist mac,so the targets can't communicate with each other. Attack_Spoof_Ban_Access_GW - Host told host that the gateway has a inexist mac, so the target can't access the internet through the gateway. Attack_Spoof_Ban_Access_Lan - Host broadcast host's mac as a inexist mac, so the target can't communicate with all hosts on the lan. Attack_IP_Conflict - Host found another host has same ip as its, so the target would be disturbed by ip conflict messages. Local_Arp_Entry_Change - now WinArpAttacker can watch local arp entry, when a host's mac address in local arp table is changed, WinArpAttacker can report. Local_Arp_Entry_Add - When a mac address of a host is added to local arp table, WinArpAttacker can report. -. It can explain each event which WinArpAttacker detected. -. It can save events to file. 1.4 Protect -. Support arp table protect. when WinArpAttacker detects local or remote host's is being arp-spoofing, it will recover local or remote host's arp tables as you wish. 1.5 Proxy Arp -. When hosts on your lan request other hosts' mac address, WinArpAttacker will tell it a certain mac address as you wish. -. It aims to realize accessing the internet without changing your ip on a new lan, but it also can make your lan in a big mass if you assign a wrong mac address. 1.6 Save arp packets -. It can save all sniffed arp packets to file. 1.7 other features. -. Support multi-network adapter and multi-ip address and multi-gateway on a computer, you can select different adapter and ip address to scan different lan. -. Support DHCP and fixed ip address. -. Count all the arp packets for each host, including sent and recieved arp packets. Arp R/S Q/P | | Action(Recive/Send) Arp packets type(ReQuest/RePly) - - - - ArpRQ meaning: The number of arp request packets recieved ArpRP meaning: The number of arp reply packets recieved ArpSQ meaning: The number or arp request packets sent ArpSP meaning: The number or arp reply packets sent 2. System Requirement. ------------------------------------ -. Local : Windows XP/2000/2003(But I hadn't tested it under Windows XP/2003) -. Remote : All computers including network devices -. WinPcap driver 3.1/lastest must be needed. 3. What's New ------------------------------------ + It can scan a large ip range for online hosts by advanced scanning mode. + It can protect local and reomte hosts from arp-spoofing. + It can enable proxy arp, act as a arp proxy. + It can save all sniffed arp packets to file. 4. Getting Started ------------------------------------ -. Firtly, install the latest WinPcap driver. -. second, just run WinArpAttacker.exe -. click scan button and start button -. look at arp information on remote computer with "arp -a" -. to stop attack, click stop button. -. to select adapter or ip address, click options button. -. to modify attacking setup, click options button. 5. Known Issues 1) This program should be run with administrator privilege. If not, the program will work abnormally. 2) The attacking action is dangerous, so you must be caution. 3) If there are many active hosts (more than 50) and the real gateway may be down on LAN. 6. Revision History ------------------------------------ = bug fixed + improvement/modification [Start of Versions History] Version 3.50 ( Jun. 4,2006) + It can detect local arp table's change. + It can protect local and reomte hosts from arp-spoofing. + It can enable proxy arp, act as a arp proxy. + It can save all sniffed arp packets to file. + It allows you send arp packets manunally. Version 3.02 ( Apr. 26,2006) + It can scan a large ip range for online hosts by advanced scanning mode. Version 3.00 ( Oct. 07, 2005) -------------------------------- + It can detect attacking actions. + Add serval scanning mode. + It can update the host list from ip packets. Version 1.50 ( May. 16, 2005) -------------------------------- + It can scan the Lan regularly for new computer list. + It can update the computer list in passive mode using sniffing technology, that is, it can update the computer list from the sender's address of arp request packets without scanning the lan. + Add two options: auto scan and update in passive mode. + It can diplay localhost's ip address , mac address, gateway ip address and current computer list status on status bar. + Add taskbar icon support, if you close the WinArpAttacker's window, it will leave a icon on taskbar, not really close, thus it can update computer list on the background. Version 1.10 ( April. 27, 2005) -------------------------------- + Support DHCP and fixed ip address. = When flood attack started, to click stop can't really stop flood attacking. = IP address is incorrectly sorted when 10.1.0.1 and 192.168.1.1 coexists. = When PacketSendPacket failed, to exit program will encounter an invalid operator. Version 1.00 ( April. 16, 2005) -------------------------------- This program is released. [End of Versions History] 7. To do none now, if you have good advice you can mailto me(asia_message@hotpop.com).

Search Tools
Keyword:
Platform:
Category:
Browse by category
Auditing
Log Analysis, Host, Passwords, Network, File Integrity, PSTN, Forensics, Backdoors, Source Code
Sniffers
Recovery
Passwords
Utilities
Passwords, Filesystem, Network, System, Compiler, Log Management, Usage Monitoring, Email
Authentication
One Time Passwords, User Authentication, Password Management, Web, Server, Certificates, Tokens
Intrusion Detection
Network, Host, Web, Evasion
Access Control
Network, Firewall, user privileges, RPC, Bootup, File System, Applications, Mandatory Access Control, Server, X-Windows, ACLs, Privileges
Replacement
Libraries, Applications
Programming
Libraries
Cryptography
Libraries, Random Numbers, Traffic Encryption, Data Encryption, Cryptoanalysis, Steganography, E-mail
Network Monitoring
Policy Enforcement
Web Access, Email
System Security Management
Accounts, Console, Windows NT, Firewall, Configuration, Filesystem, Linux, Solaris, Monitoring
Network Utilities
Tunneling, Miscellaneous, Monitoring
Rootkits
Secure Deletion
Hardening
Linux, FreeBSD, NT, Solaris
Hostile Code
Detection, Removal, Sandbox


 

Privacy Statement
Copyright 2010, SecurityFocus