audit
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 118
glibc-audit 2.4-4
glibc-audit is a modified version of glibc for application developers who check their code with an automatic memory access check more>>
glibc-audit is a modified version of glibc for application developers who check their code with an automatic memory access checker such as valgrind, Insure++, or Purify.
glibc-audit has been audited and cleaned up so that reports from the developers use of a memory access checker are more likely to be interesting to the developer, with less "noise" from the C library itself. Typically, glibc-audit initializes all of its local variables and structs before use. Ordinary glibc uses uninitialized dummy variables that are "dont-care" to its logic but reported by the memory access checker.
Also, the r_debug.r_brk protocol has been enhanced to co-operate with a co-resident auditor. If the auditor sets .r_brk, then the runtime loader will call the auditor directly whenever a shared library event occurs.
This is much more convenient than using breakpoints. By default the old breakpoint protocol works just like before. The new protocol is binary compatible with the old on machines where a pointer to a function is the same size as an ordinary pointer. Platforms where a pointer to a function is larger (such as HP-PA RISC, Alpha processor, or PowerPC) are not binary backward compatible, and will have to increment r_debug.r_version. Exising clients (such as gdb) also will see an ignorable type mismatch error when they are built. But for now, it is worth more not to antagonize gdb at runtime on x86.
The patch modifies 91 files. Compared to glibc-2.3.2-27.9, the additional code occupies 18 more bytes of .text, and 24 fewer bytes in the .so. On a nano-scopic scale, the typical execution cost is 0 to 3 CPU cycles per affected routine; the estimated median total impact is less than 1 second per machine per day. In the case of *printf(), glibc-audit is faster than glibc because the cleaned-up source helps gcc-3.2 avoid generating atrocious code when initializing printf_spec.info for parse_one_spec() in stdio-common/printf-parse.h.
Glibc-audit was constructed by running a memory access checker on the internal testcases of glibc, then analyzing the reported errors and modifying the source. The process revealed 10 memory access bugs in glibc-2.3.2-11.9. Seven were fixed in glibc-2.3.2-27.9, two more have been fixed in CVS, and one is a design flaw that probably will not be fixed.
Predecessor patches to glibc-audit-1 were submitted to the glibc project, but those patches were ignored [user "guest", password "guest"], declined, or rejected. There is enough improvement in usability and reliability to publish glibc-audit-1 separately.
The unmodified glibc-2.3.2-27.9.src.rpm is available from RedHat mirrors. rpmbuild -ba --target i686 took about 4 hours and 2.5GB of disk space on a machine with 1.1GHz CPU, 384MB RAM, UDMA100 disk.
Enhancements:
- The patches were updated to glibc-2.4-4.
- A glibc bug that interfered with gdb stop-on-solib-events was fixed.
- On x86, x86-64, and PowerPC, the __NR_open system call was improved to avoid leaking information from the user to the kernel.
<<lessglibc-audit has been audited and cleaned up so that reports from the developers use of a memory access checker are more likely to be interesting to the developer, with less "noise" from the C library itself. Typically, glibc-audit initializes all of its local variables and structs before use. Ordinary glibc uses uninitialized dummy variables that are "dont-care" to its logic but reported by the memory access checker.
Also, the r_debug.r_brk protocol has been enhanced to co-operate with a co-resident auditor. If the auditor sets .r_brk, then the runtime loader will call the auditor directly whenever a shared library event occurs.
This is much more convenient than using breakpoints. By default the old breakpoint protocol works just like before. The new protocol is binary compatible with the old on machines where a pointer to a function is the same size as an ordinary pointer. Platforms where a pointer to a function is larger (such as HP-PA RISC, Alpha processor, or PowerPC) are not binary backward compatible, and will have to increment r_debug.r_version. Exising clients (such as gdb) also will see an ignorable type mismatch error when they are built. But for now, it is worth more not to antagonize gdb at runtime on x86.
The patch modifies 91 files. Compared to glibc-2.3.2-27.9, the additional code occupies 18 more bytes of .text, and 24 fewer bytes in the .so. On a nano-scopic scale, the typical execution cost is 0 to 3 CPU cycles per affected routine; the estimated median total impact is less than 1 second per machine per day. In the case of *printf(), glibc-audit is faster than glibc because the cleaned-up source helps gcc-3.2 avoid generating atrocious code when initializing printf_spec.info for parse_one_spec() in stdio-common/printf-parse.h.
Glibc-audit was constructed by running a memory access checker on the internal testcases of glibc, then analyzing the reported errors and modifying the source. The process revealed 10 memory access bugs in glibc-2.3.2-11.9. Seven were fixed in glibc-2.3.2-27.9, two more have been fixed in CVS, and one is a design flaw that probably will not be fixed.
Predecessor patches to glibc-audit-1 were submitted to the glibc project, but those patches were ignored [user "guest", password "guest"], declined, or rejected. There is enough improvement in usability and reliability to publish glibc-audit-1 separately.
The unmodified glibc-2.3.2-27.9.src.rpm is available from RedHat mirrors. rpmbuild -ba --target i686 took about 4 hours and 2.5GB of disk space on a machine with 1.1GHz CPU, 384MB RAM, UDMA100 disk.
Enhancements:
- The patches were updated to glibc-2.4-4.
- A glibc bug that interfered with gdb stop-on-solib-events was fixed.
- On x86, x86-64, and PowerPC, the __NR_open system call was improved to avoid leaking information from the user to the kernel.
Download (4.2MB)
Added: 2006-03-29 License: LGPL (GNU Lesser General Public License) Price:
1315 downloads
SMBD Audit 0.2 RC1
SMBD Audit application is a set of VFS audit module for Samba 3 and web frontend to view and search samba audit logs. more>>
SMBD Audit application is a set of VFS audit module for Samba 3 and web frontend to view and search samba audit logs.
Module stores logs directly into MySQL database with libmysqlclient.
You can search database by Login, Address, Share, Action, Log Message(specify filename or directory name), From and To Date.
Here is a very short list of what SMBD Audit package includes, and what it does.
- a VFS audit module, to provide logging to MySQL database
- a web front end to view and search logs.
<<lessModule stores logs directly into MySQL database with libmysqlclient.
You can search database by Login, Address, Share, Action, Log Message(specify filename or directory name), From and To Date.
Here is a very short list of what SMBD Audit package includes, and what it does.
- a VFS audit module, to provide logging to MySQL database
- a web front end to view and search logs.
Download (0.35MB)
Added: 2006-01-26 License: GPL (GNU General Public License) Price:
1374 downloads
audit daemon 1.5.6
audit package contains the user-space utilities for creating audit rules. more>>
audit package contains the user-space utilities for creating audit rules. As well as for storing and searching the audit records generate by the audit subsystem in the Linux 2.6 kernel.
Usage:
Examples usage of utilities:
General:
Window 1:
./auditd
Window 2 (you dont have to have the daemon running to try this, but
enabled has to be 1):
./auditctl -s
./auditctl -a entry,always -S open
ls
./auditctl -d entry,always -S open
Identity tracking:
./auditctl -a exit,always -S all -F loginuid=2000
./auditctl -L 2000,"test uid"
Enhancements:
- Updates were made to system-config-audit. auditctl was updated to better handle watching of directories with older kernels.
- Memory leaks and an invalid free in auditd were fixed along with interpretations in auparse.
<<lessUsage:
Examples usage of utilities:
General:
Window 1:
./auditd
Window 2 (you dont have to have the daemon running to try this, but
enabled has to be 1):
./auditctl -s
./auditctl -a entry,always -S open
ls
./auditctl -d entry,always -S open
Identity tracking:
./auditctl -a exit,always -S all -F loginuid=2000
./auditctl -L 2000,"test uid"
Enhancements:
- Updates were made to system-config-audit. auditctl was updated to better handle watching of directories with older kernels.
- Memory leaks and an invalid free in auditd were fixed along with interpretations in auparse.
Download (0.29MB)
Added: 2007-07-26 License: GPL (GNU General Public License) Price:
824 downloads
Qmail Auditor 0.4
Qmail Auditor consists of a email auditing tool. more>>
Qmail Auditor consists of a email auditing tool.
QMail Auditor provides simple a method for auditing emails. It is easy to configure and uses regular expressions as rules.
The format of audit file is :
Any e-mail (outbound or inbound) have passed at this filter.
The valids "field header"(s) :
all - field from or to of e-mails
to - field to
from - field from
In case of regular expression you read the
# man re_format
# man regex
E-mail to forward is a valid mail account to redirect.
Example of this :
from nelio@walk.* auditoria@spyware.walk.com.br
to nelio@spyware.* auditoria@spyware.walk.com.br
Enhancements:
- Now the config file name has renamed.
- From audit (in /var/qmail/control for /var/qmail/control/auditor) and qmail-queue-real-audit for qmail-queue-real-auditor.
<<lessQMail Auditor provides simple a method for auditing emails. It is easy to configure and uses regular expressions as rules.
The format of audit file is :
Any e-mail (outbound or inbound) have passed at this filter.
The valids "field header"(s) :
all - field from or to of e-mails
to - field to
from - field from
In case of regular expression you read the
# man re_format
# man regex
E-mail to forward is a valid mail account to redirect.
Example of this :
from nelio@walk.* auditoria@spyware.walk.com.br
to nelio@spyware.* auditoria@spyware.walk.com.br
Enhancements:
- Now the config file name has renamed.
- From audit (in /var/qmail/control for /var/qmail/control/auditor) and qmail-queue-real-audit for qmail-queue-real-auditor.
Download (0.16MB)
Added: 2007-01-22 License: BSD License Price:
1010 downloads
Domain Auditor 0.31
Domain Auditor project was written to audit and track accounts within a domain. more>>
Domain Auditor project was written to audit and track accounts within a domain. This tool uses LDAP queries to a definable Active Directory server to find various definable classes of accounts.
Initially it will operate interactively, but capabilities may be added in the future to automate functions (i.e. generate reports on a scheduled basis). The installation script handles most installation chores, so setup is very straightforward.
The tool is beta status at this time, but is in being used to generate SOX reports for my employer.
Main features:
- Reports - This function will display a list of defined reports, when invoked it will generate a list of accounts from AD (via LDAP queries) the results returned will depend on what you have defined for the filter for any particular report class under Sysadmin
- Sys Admin - This function will allow you to changes the system settings for LDAP server and port, base DN, Bind DN, username and password, and the database settings (mySQL only at this time). You may also add the report class definitions and their matching LDAP filters within this module
- User Admin - This screen is used to define users for the system and their rights. Usernames are used as the primary value, and entered values are validated via LDAP queries
- Audit Logs - The system logs all changes to the information stored and this page will allow you to review the data from these logs
<<lessInitially it will operate interactively, but capabilities may be added in the future to automate functions (i.e. generate reports on a scheduled basis). The installation script handles most installation chores, so setup is very straightforward.
The tool is beta status at this time, but is in being used to generate SOX reports for my employer.
Main features:
- Reports - This function will display a list of defined reports, when invoked it will generate a list of accounts from AD (via LDAP queries) the results returned will depend on what you have defined for the filter for any particular report class under Sysadmin
- Sys Admin - This function will allow you to changes the system settings for LDAP server and port, base DN, Bind DN, username and password, and the database settings (mySQL only at this time). You may also add the report class definitions and their matching LDAP filters within this module
- User Admin - This screen is used to define users for the system and their rights. Usernames are used as the primary value, and entered values are validated via LDAP queries
- Audit Logs - The system logs all changes to the information stored and this page will allow you to review the data from these logs
Download (0.043MB)
Added: 2006-01-24 License: GPL (GNU General Public License) Price:
1369 downloads
System Local Audit Daemon 2.0
SLAD is a tool for performing local security checks against GNU/Linux systems. more>>
SLAD is a tool for performing local security checks against GNU/Linux systems.
SLAD has been primarily developed for the BOSS project to work together with Nessus to enhance its local scanning capabilities. For example, scanning for weak passwords with a tool like John-the-Ripper is something that simply cannot be achieved by a network scan.
Therefore, SLAD is required to be installed on every GNU/Linux system where local auditing needs to be done. SLAD can then be used as a stand-alone application or more conveniently through Nessus. For usage with Nessus two NASL plugins are provided for interfacing between Nessus and SLAD
The Version 2.0 provides a XML Interface for Parameters and easy integration of additional audit-parameters and tools. To help the administrator to integrate a new feature-set, a development-documentation is provided with the cvs.
SLAD has been tested and verified on the following platforms:
RedHat Fedora Core 3
SuSe 9.2
Debian 3.0 (woody)
Debian 3.1 (sarge)
ERPOSS3
Gentoo Linux 2004.3
SLAD is implemented in Perl and provides an extendable plugin architecture allowing to use various GPL-based security scanners and auditing tools under one common framework. Currently, SLAD comes packaged with
John-the-Ripper
Chkrootkit
LSOF
ClamAV
Tripwire
TIGER
As a result SLAD delivers reports of these locally installed auditing and analysis tools. When used with Nessus the individual reports are wrapped into a standard Nessus report.
SLAD as well as the SLAD NASL Plugins can be downloaded from this Website in their current stable release V2.0.
Installation:
You can use our "easy-to-use" GTK installer, this installer downloads the lastest SLAD Release Binary, and install it on the target system. You only need to provide the login for the traget system.
<<lessSLAD has been primarily developed for the BOSS project to work together with Nessus to enhance its local scanning capabilities. For example, scanning for weak passwords with a tool like John-the-Ripper is something that simply cannot be achieved by a network scan.
Therefore, SLAD is required to be installed on every GNU/Linux system where local auditing needs to be done. SLAD can then be used as a stand-alone application or more conveniently through Nessus. For usage with Nessus two NASL plugins are provided for interfacing between Nessus and SLAD
The Version 2.0 provides a XML Interface for Parameters and easy integration of additional audit-parameters and tools. To help the administrator to integrate a new feature-set, a development-documentation is provided with the cvs.
SLAD has been tested and verified on the following platforms:
RedHat Fedora Core 3
SuSe 9.2
Debian 3.0 (woody)
Debian 3.1 (sarge)
ERPOSS3
Gentoo Linux 2004.3
SLAD is implemented in Perl and provides an extendable plugin architecture allowing to use various GPL-based security scanners and auditing tools under one common framework. Currently, SLAD comes packaged with
John-the-Ripper
Chkrootkit
LSOF
ClamAV
Tripwire
TIGER
As a result SLAD delivers reports of these locally installed auditing and analysis tools. When used with Nessus the individual reports are wrapped into a standard Nessus report.
SLAD as well as the SLAD NASL Plugins can be downloaded from this Website in their current stable release V2.0.
Installation:
You can use our "easy-to-use" GTK installer, this installer downloads the lastest SLAD Release Binary, and install it on the target system. You only need to provide the login for the traget system.
Download (0.016MB)
Added: 2006-01-16 License: GPL (GNU General Public License) Price:
1380 downloads
Spike PHP Security Audit Tool 0.23
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits. more>>
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits.
Usage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
<<lessUsage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
Download (0.018MB)
Added: 2006-08-01 License: Open Software License Price:
1192 downloads
Linux Security Auditing Tool 0.9.6
Linux Security Auditing Tool (LSAT) is a post install security auditing tool. more>>
The Linux Security Auditing Tool (LSAT) is a post install security auditor for Linux/Unix.
Linux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
<<lessLinux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
Download (0.070MB)
Added: 2007-05-21 License: GPL (GNU General Public License) Price:
904 downloads
Tiquit 2.4
Tiquit is a lightweight, portable incident tracking and reporting system for IT support. more>>
Tiquit (Tiquit Is Quality User Incident Tracking) is a lightweight, portable incident tracking and reporting system for IT support.
Tiquits aim is to provide functions typical of similar products with less overhead and a greater capacity for customization.
Main features:
- Secure Agent Logins
- Dynamic User, Location, Agent, and Incident Type Management
- Basic Email Notifications
- Incident Search
- Simple incident text search
- Incident Date searches
- Incident lookup page for users
- Incident locking
- User setup request form
- Incident Report
- User Report
- Agent Report
- Audit trail information for incidents
- More sophisticated email notification
- Graphical reports for incidents by agent, user, location, type, group, and department
- Information request form
- File attachments
- Ability to designate parent incidents, allowing group resolution/closure
- Session-based authentication
- Visual cues indicating presence of attachments and diary entries
Enhancements:
- Made user submission, search and registration requests optional.
- Default to of Moved to a web-based upgrade method.
- Added theme manager.
- Text search highlights description search keywords.
- Added "Add resolution to knowledgebase" option.
- Added ability to send attachments and diary notes in reassignment email.
- Fixed changing close datetime bug.
- Paginated user manager by letter, threshold of 5.
- Schema changes, larger attachment filenames, longer type names Improved field sizes.
- Fixed name widget, first initial bug.
<<lessTiquits aim is to provide functions typical of similar products with less overhead and a greater capacity for customization.
Main features:
- Secure Agent Logins
- Dynamic User, Location, Agent, and Incident Type Management
- Basic Email Notifications
- Incident Search
- Simple incident text search
- Incident Date searches
- Incident lookup page for users
- Incident locking
- User setup request form
- Incident Report
- User Report
- Agent Report
- Audit trail information for incidents
- More sophisticated email notification
- Graphical reports for incidents by agent, user, location, type, group, and department
- Information request form
- File attachments
- Ability to designate parent incidents, allowing group resolution/closure
- Session-based authentication
- Visual cues indicating presence of attachments and diary entries
Enhancements:
- Made user submission, search and registration requests optional.
- Default to of Moved to a web-based upgrade method.
- Added theme manager.
- Text search highlights description search keywords.
- Added "Add resolution to knowledgebase" option.
- Added ability to send attachments and diary notes in reassignment email.
- Fixed changing close datetime bug.
- Paginated user manager by letter, threshold of 5.
- Schema changes, larger attachment filenames, longer type names Improved field sizes.
- Fixed name widget, first initial bug.
Download (0.16MB)
Added: 2007-01-16 License: GPL (GNU General Public License) Price:
1012 downloads
Packit 1.0
Packit (Packet toolkit) is a network auditing tool. more>>
Packit (Packet toolkit) is a network auditing tool. Its value is derived from its ability to customize, inject, monitor, and manipulate IP traffic.
By allowing you to define (spoof) nearly all TCP, ICMP, IP, ARP, UDP, RARP, and Ethernet header options, Packit can be useful in testing firewalls, intrusion detection/prevention systems, port scanning, simulating network traffic, and general TCP/IP auditing. Packit is also an excellent tool for learning TCP/IP.
Packit 1.0 requires libnet 1.1.2 or greater as well as libpcap. It has been successfully compiled and tested to run on FreeBSD, NetBSD, OpenBSD, MacOS X and Linux.
Due to shifting priorities, this project is now in maintenance mode. If you find a bug, either submit a patch or email me the details. Ill do my best to put out fix in a reasonable amount of time.
Enhancements:
Injection:
- Bugfix NULL bytes in the payload (patch contributed by: Jason Copenhaver)
General:
- Updates to several build routines to support libnet 1.1.2+
<<lessBy allowing you to define (spoof) nearly all TCP, ICMP, IP, ARP, UDP, RARP, and Ethernet header options, Packit can be useful in testing firewalls, intrusion detection/prevention systems, port scanning, simulating network traffic, and general TCP/IP auditing. Packit is also an excellent tool for learning TCP/IP.
Packit 1.0 requires libnet 1.1.2 or greater as well as libpcap. It has been successfully compiled and tested to run on FreeBSD, NetBSD, OpenBSD, MacOS X and Linux.
Due to shifting priorities, this project is now in maintenance mode. If you find a bug, either submit a patch or email me the details. Ill do my best to put out fix in a reasonable amount of time.
Enhancements:
Injection:
- Bugfix NULL bytes in the payload (patch contributed by: Jason Copenhaver)
General:
- Updates to several build routines to support libnet 1.1.2+
Download (0.13MB)
Added: 2006-03-10 License: GPL (GNU General Public License) Price:
1336 downloads
MfGames.Utility 1.3.0
MfGames.Utility is a C# library with an auditing framework and other useful functions. more>>
MfGames.Utility is a collection of useful C# classes that have no dependencies outside of the core libraries.
The MfGames.Utility library for C# and VB.NET is a general purposes library that contains many useful functions, but requires no additional libraries outside of itself and the core.
Main features:
- Random Number Generation
- Simple Logging
- Auditing Framework
- Tiny Functions
Enhancements:
- log4net has been merged as an optional compile.
- This release adds basic vector, matrix, quaternion, and euler rotation objects.
- The Auditable framework has been enhanced to allow for nested reporting of issues.
<<lessThe MfGames.Utility library for C# and VB.NET is a general purposes library that contains many useful functions, but requires no additional libraries outside of itself and the core.
Main features:
- Random Number Generation
- Simple Logging
- Auditing Framework
- Tiny Functions
Enhancements:
- log4net has been merged as an optional compile.
- This release adds basic vector, matrix, quaternion, and euler rotation objects.
- The Auditable framework has been enhanced to allow for nested reporting of issues.
Download (0.033MB)
Added: 2006-04-07 License: LGPL (GNU Lesser General Public License) Price:
1296 downloads
CCSAT 1.0
CCSAT provides an automated configuration security audit tool for Cisco routers and switches. more>>
CCSAT provides an automated configuration security audit tool for Cisco routers and switches.
CCSAT (Cisco Configuration Security Auditing Tool) is a tool for automated auditing of configuration security for large numbers of Cisco routers and switches.
The tool is based upon industry best practices, including Cisco, NSA, and SANS security guides and recommendations.
It is flexible and can report details down to individual device interfaces, lines, ACLs, and ASs, etc.
This tool has been tested and used successfully on FreeBSD, Solaris 8, and Linux, and should work on all major UNIX platforms (POSIX.2).
HOW-TO:
1) To start, have this script (ccsat) in your working directory /root/Desktop;
2) Within that directory, create subdirectories /root/Desktop/config and /root/Desktop/report;
3) Put config files in /root/Desktop/config and ensure same file extension (default .txt);
4) If none, then add file extension (commands provided here);
5) Run ./ccsat 12.3 (assuming 12.3 is the latest IOS);
6) The main report will be /root/Desktop/report/audit-results.
<<lessCCSAT (Cisco Configuration Security Auditing Tool) is a tool for automated auditing of configuration security for large numbers of Cisco routers and switches.
The tool is based upon industry best practices, including Cisco, NSA, and SANS security guides and recommendations.
It is flexible and can report details down to individual device interfaces, lines, ACLs, and ASs, etc.
This tool has been tested and used successfully on FreeBSD, Solaris 8, and Linux, and should work on all major UNIX platforms (POSIX.2).
HOW-TO:
1) To start, have this script (ccsat) in your working directory /root/Desktop;
2) Within that directory, create subdirectories /root/Desktop/config and /root/Desktop/report;
3) Put config files in /root/Desktop/config and ensure same file extension (default .txt);
4) If none, then add file extension (commands provided here);
5) Run ./ccsat 12.3 (assuming 12.3 is the latest IOS);
6) The main report will be /root/Desktop/report/audit-results.
Download (0.032MB)
Added: 2007-03-12 License: Freeware Price:
957 downloads
RefactorIT 2.5.4
Refactorit is a Java refactoring browser for Netbeans, JBuilder, Jdev, and standalone. more>>
RefactorIT project is a tool for Java developers. A developer can take source code of any size and complexity and rework it into well-designed code by means of over 30 automated refactorings.
In addition, it provides a comprehensive set of smart query functions, a graphical dependency analyzer, and over 100 quality metrics and audits that make it possible to analyze and track large volumes of code.
It may be used as a stand-alone tool or installed as an add-in to NetBeans, Sun ONE Studio, JDeveloper, and JBuilder.
Speed and flexibility, innovativeness and aesthetics, power and appeal - todays developers and software architects expect a lot from their software development tools.
Spontaneity is especially important: we all want to be able to put our plans into action quickly.
RefactorIT is the ideal development tool for people who enjoy their freedom - it is the first comprehensive refactoring and code analyses tool that goes everywhere you want to take it - no matter...
- what IDE your team is working with - by choice or force,
- what kind of Java technologies you are developing with,
- how daring your refactoring project may seem.
RefactorIT provides
- Automatic Refactoring Operations,
- Code Searches and Analysis,
- Audits and Corrective Actions,
- Metrics,
- IDE integrations,
- Full JSP support.
<<lessIn addition, it provides a comprehensive set of smart query functions, a graphical dependency analyzer, and over 100 quality metrics and audits that make it possible to analyze and track large volumes of code.
It may be used as a stand-alone tool or installed as an add-in to NetBeans, Sun ONE Studio, JDeveloper, and JBuilder.
Speed and flexibility, innovativeness and aesthetics, power and appeal - todays developers and software architects expect a lot from their software development tools.
Spontaneity is especially important: we all want to be able to put our plans into action quickly.
RefactorIT is the ideal development tool for people who enjoy their freedom - it is the first comprehensive refactoring and code analyses tool that goes everywhere you want to take it - no matter...
- what IDE your team is working with - by choice or force,
- what kind of Java technologies you are developing with,
- how daring your refactoring project may seem.
RefactorIT provides
- Automatic Refactoring Operations,
- Code Searches and Analysis,
- Audits and Corrective Actions,
- Metrics,
- IDE integrations,
- Full JSP support.
Download (28.7MB)
Added: 2006-05-11 License: Free To Use But Restricted Price:
721 downloads
DSniff 2.3
DSniff is a collection of tools for network auditing and penetration testing. more>>
DSniff project is a collection of tools for network auditing and penetration testing. dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor a network for interesting data (passwords, e-mail, files, etc.).
arpspoof, dnsspoof, and macof facilitate the interception of network traffic normally unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm implement active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions by exploiting weak bindings in ad-hoc PKI.
I wrote these tools with honest intentions - to audit my own network, and to demonstrate the insecurity of most network application protocols. Please do not abuse this software.
<<lessarpspoof, dnsspoof, and macof facilitate the interception of network traffic normally unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm implement active monkey-in-the-middle attacks against redirected SSH and HTTPS sessions by exploiting weak bindings in ad-hoc PKI.
I wrote these tools with honest intentions - to audit my own network, and to demonstrate the insecurity of most network application protocols. Please do not abuse this software.
Download (0.12MB)
Added: 2006-03-03 License: GPL (GNU General Public License) Price:
952 downloads
Buddy 1.14
Buddy is a tiny, fast, and proper Debian package handler which acts as a wrapper to apt-get and dpkg. more>>
Tired of a broken package system after upgrading using dselect or aptitude? Buddy is a hardcore Debian package handler reduced to its essential functions. Buddy is not intended as replacement for the common Debian package manager
Buddy is a tiny, fast, and proper Debian package handler which acts as a wrapper to apt-get and dpkg.
Every command is shown before it is executed. It has the ability to backup the package setup and simulate package manipulations (dry run).
Main features:
- package maintenance (backup, diagnostic, audit, cleanup, renew, repair)
- package information (find/search, details, status, list, count)
- package manipulation (install, uninstall, remove, purge, configure)
Advantages:
- failover safe - simulate sensitive package manipulations (dry run)
- more secure - backup your package-setup to be more reversible
- faster - no packagelist loading at startup
- more transparent - every command is shown before executed
- completely shell based - no curses or other libraries needed
Enhancements:
- This is a work in progress snapshot.
<<lessBuddy is a tiny, fast, and proper Debian package handler which acts as a wrapper to apt-get and dpkg.
Every command is shown before it is executed. It has the ability to backup the package setup and simulate package manipulations (dry run).
Main features:
- package maintenance (backup, diagnostic, audit, cleanup, renew, repair)
- package information (find/search, details, status, list, count)
- package manipulation (install, uninstall, remove, purge, configure)
Advantages:
- failover safe - simulate sensitive package manipulations (dry run)
- more secure - backup your package-setup to be more reversible
- faster - no packagelist loading at startup
- more transparent - every command is shown before executed
- completely shell based - no curses or other libraries needed
Enhancements:
- This is a work in progress snapshot.
Download (0.002MB)
Added: 2005-10-12 License: GPL (GNU General Public License) Price:
1480 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above audit search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
