Libecc is a C++ elliptic curve cryptography library that supports fixed-size keys for maximum speed. The goal of this project is to become the first free Open Source library providing the means to generate safe elliptic curves, and to provide an important source of information for anyone with general interest in ECC.
Added Sep 26, 2002
Logrep v1.12
|
by Tevfik Karagulle
< http://logrep.sourceforge.net/ >
Platforms: Linux, POSIX, Windows 2000, Windows NT
|
Score: Not scored yet
|
Logrep is a framework for extraction and presentation of information from various logfiles. Currently Snort, Squid, Postfix, Apache, Trend Micro VirusWall, and Microsoft IIS are supported. HTML reports, 2D analysis, overview page, secure communication, and bar charts are available.
IPTables log analyzer displays Linux 2.4 iptables logs (rejected packets) in a nice HTML page. This page is easy to read and understand to reduce the manual analysis time, and contains statistics on packets and links to more detailed information on a given host, port, domain, etc.
IPKungFu is a script aiming to simplify the configuration of your firewall/NAT/port forwarding. It takes advantage of advanced features of iptables and tcpwrappers.
Bogofilter is a Bayesian spam filter. In its normal mode of operation, it takes an email message or other text on standard input, does a statistical check against lists of "good" and "bad" words, and returns a status code indicating whether or not the message is spam. Bogofilter is designed with fast algorithms (including Berkeley DB system), coded directly in C, and tuned for speed, so it can be used for production by sites that process a lot of mail.
Python OpenSSL Wrappers (POW) is an early release as it is now. The intention was to quickly cover the breadth of the OpenSSL library, then the depth of particular areas. Future releases will focus on bug fixes, and filling missing gaps in the API. The digests and ciphers should be adequate for most purposes as should the SSL wrappers. Although certificates and CRLs can be generated using this library, no extension support has been included in the current release.
Server Scan is a simple tool for detecting web servers on a network. Created originally to detect unauthorized web servers on a network, server scan can serve many purposes from detecting unauthorized web servers to checking what types of web servers are running on your network. Server Scan is compatible with Windows 95, Windows 98, Windows Me, Windows NT 4, Windows 2000, and Windows XP.
GFI LANguard Network Security Scanner (N.S.S.) is a tool that checks your network for all potential methods that a hacker might use to attack your network. By analyzing the operating system and the applications running on your network, GFI LANguard N.S.S. identifies possible security holes in your network. In other words, it plays the devil's advocate and alerts you to weaknesses before a hacker can find them, enabling you to deal with these issues before a hacker can exploit them.
archivemail is a tool written in Python for archiving and compressing old email in mailboxes. It can move messages older than the specified number of days to a separate mbox-format mailbox that is compressed with gzip, or optionally just delete old email. It supports archiving mbox, MH, and maildir format mailboxes.
The Anomy mail sanitizer is a filter designed to block email-based security risks, such as trojans and viruses. It can scan an arbitrarily complex RFC822 or MIME message and remove or rename attachments, truncate unusually long MIME header fields and sanitize HTML by disabling Javascript, etc. It uses a single-pass pure Perl MIME parser, which can make it both more efficient and more precise than other similar programs. The sanitizer has built-in support for third-party virus scanners.
bcrypt is a blowfish file encryption utility which aims for cross-platform portability. In addition to providing 448-bit encryption, bcrypt overwrites input files with random garbage before deletion in order to make low-level data recovery much more difficult.
Added Sep 16, 2002
Demarc PureSecure v1.6
|
by DEMARC Security
< http://www.demarc.com/ >
Platforms: BSDI, FreeBSD, HP-UX, Linux, NetBSD, OpenBSD, Perl (any system supporting perl), UNIX, Windows 2000, Windows NT, Windows XP
|
Score: 
|
Instead of having one program perform file integrity checks, another program monitoring the connectivity and health of your network, and yet another monitoring your network for intrusion detection attempts, Demarc PureSecure combines all these services into one powerful client/server program. Not only can you monitor the status of the different machines in your network, but you can also respond to changes in your network all from one centralized location.
Security is already a full time job in any network, and the burden of monitoring the reports from multiple programs across dozens of servers can result in information overload. The human mind can only process so much data at any given time before it simply becomes too much to analyze. Demarc PureSecure centralizes the reporting and analysis for the entire network which allows you to more easily weed out the important data from the superfluous background noise, thereby targeting your efforts where they really belong.
Added Sep 11, 2002
gateProtect v3.1
|
by Till von Rennenkampff
< http://www.gateprotect.com/ >
Platforms: Linux, Windows 2000, Windows 95/98, Windows NT, Windows XP
|
Score: Not scored yet
|
The firewall product line of gateProtect's high security systems enables companies to completely secure their corporate networks against internal and external attacks. gateProtect includes features to protect data from Internet-based security risks, espionage, and virus attacks. Through the use of an intrusion detection system, attacks are detected, prevented, and located. gateProtect's all-in-one firewall products feature very easy usage combined with a maximum of power, speed and security. The whole firewall can be easily configured through a graphical interface with drag & drop support. gateProtect's firewall software requires its own dedicated PC to run.
Throughput Monitor monitors or analyzes event frequency in log files. Its main purpose is to detect if frequency crosses specified theresholds and report about it. Alerts can be mailed or logged in realtime on running logs. Old logs can also be analyzed. Log events are described by regexes, so almost every format is readable. It can be used to detect spam, too-frequent system resource usage (for example POP or IMAP), etc.
The PsychologIcal Security System (P.I.S.S.) is the last barrier and desperate security system for the lazy trusted system administrator. It's based on a deep investigation process trying to find the most generalized psychological system intrusion profile. The protection scheme is included both in English and Spanish.
|
