< Prev 1 2 3 4 5 6 7 8 9 10 Next >
Category: Hostile Code
DisSpam is a personal solution to combat spam (i.e. not for mailservers/ISPs). It is a Perl script that removes spam from POP3 mailboxes based on RBLs such as orbz.org. It runs through cron and uses a very simple configuration file.
CodeBlue is an attempt to increase the awareness of hosts that are infected with malicious worms by scanning Apache log files and emailing the infected hosts with details of their infection and how to obtain help removing the worm. Currently, CodeBlue scans Apache logs for Code Red, Code Red 2, and Nimda.
FIRE, the Forensic and Incident Response Environment, (formerly known as Biatchux) is a portable, bootable CD-ROM-based distribution providing an immediate environment for performing forensics analysis, data recovery, virus scanning, and pen-testing. It also provides the necessary tools for live forensics/analysis/incident response.
OpenAntivirus' VirusHammer is a standalone tool that scans you computer for viruses. It offers a comfortable GUI, a progress indicator, and results in terms of locating viruses.
Vision, Foundstone's newest forensic product, is an essential part of a computer security professional's tool-kit. Vision maps all of a host's executables to corresponding ports, allowing you to identify and investigate suspicious services. Vision enables you to interrogate suspect services to identify backdoors and Trojan applications. If a malicious service is identified, Vision allows you to immediately kill it.
Qmail-Scanner Statistics (QSS) uses the Qmail-Scanner Logfile to generate daily, monthly, and yearly statistics. It also shows a complete list of viruses stopped by Qmail-Scanner, the top five domains from which the viruses came, as well as the countries of origin.
OdeiaVir intercepts email messages about to go into a user's qmail mailbox and scans them for viruses. Currently supported AV packages are McAfee VirusScan, F-Prot, and Panda. Others will follow.
Qmail-Scanner, (also known as scan4virus) is an addon that enables a Qmail Email server to scan all gatewayed Email for certain characteristics. It is typically used for its anti-virus protection functions, in which case it is used in conjunction with commercial virus scanners. but also enables a site to react to Email (at a server/site level) that contains specific strings in particular headers, or particular attachment filenames or types (e.g. *.VBS attachments). It also can be used as an archiving tool for auditing or backup purposes. Qmail-Scanner is integrated into the mail server at a lower level than some other Unix-based virus scanners, resulting in better performance. It is capable of scanning not only locally sent/received Email, but also Email that crosses the server in a relay capacity.
Arbomb facilitates the detection of volatile archive files which can be used to cripple email filtering servers with a Denial-Of-Service type of attack.
pcInternet Patrol maximizes protection with minimum user involvement This product finds 6 times more potentially dangerous programs/modules than other leading personal firewalls. Other features are: - Stops all intruder programs both known and unknown; - Users always have the latest programs definition without the need for an update; - Keeps you and your computer out of harms way, without getting in your way; - Cannot be disabled by an intruder without alerting user or administrator; - Activates Intruder tracking to trace IP address of intruder for possible apprehension; - Continuously monitors the state of the NETBIOS ports, the first entry target for intruders; - Help with security issues in real time!
Browse by category