detection
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 519
Apache Intrusion Detection Module 1.0
Apache Intrusion Detection Module is a simple tool to find out intrusion attempts by examining the client requests in real time. more>>
Apache Intrusion Detection Module is a simple tool to find out intrusion attempts by examining the client requests in real time.
This is a simple attempt to build an Intrusion Detection Module for Apache. It is being run at two different sites successfully but there is a performance penalty as the module intercepts all object requests and examines with the list of vulnerable CGI applications.
Issuing a simple make should do in most cases; at worst tweak with the Makefile. The make process will compile mod-id as a apache DSO module, if your server has no DSO support you will need more time...
Any suggestions and improvements are welcome.
<<lessThis is a simple attempt to build an Intrusion Detection Module for Apache. It is being run at two different sites successfully but there is a performance penalty as the module intercepts all object requests and examines with the list of vulnerable CGI applications.
Issuing a simple make should do in most cases; at worst tweak with the Makefile. The make process will compile mod-id as a apache DSO module, if your server has no DSO support you will need more time...
Any suggestions and improvements are welcome.
Download (0.031MB)
Added: 2006-04-04 License: GPL (GNU General Public License) Price:
1304 downloads
Dynamic Taste Detection for XMMS 20020303
Dynamic Taste Detection patch makes XMMS adapt its playlist randomization function to your personal taste. more>>
Dynamic Taste Detection patch makes XMMS adapt its playlist randomization function to your personal taste.
Songs you dont like end up at the end of the playlist, and songs you like to hear together tend to end up next to each other.
<<lessSongs you dont like end up at the end of the playlist, and songs you like to hear together tend to end up next to each other.
Download (2.8MB)
Added: 2006-04-12 License: GPL (GNU General Public License) Price:
1291 downloads
cpdetector 1.05
cpdetector project is a small yet clever framework for codepage detection. more>>
cpdetector project is a small yet clever framework for codepage detection.
cpdetector is a small yet clever framework for codepage detection that integrates different strategies. It may be used as a library for third party software that accesses textual data over network.
It also includes a best-practice implementation in form of a command line tool that allows sorting and transforming large collections of documents based on their codepage.
Available strategies include: jchardet (exclusion, frequency analysis, and guessing), detection of the HTML charset property, and detection of the XML encoding declaration.
What is a code page?
At first, a textual document is nothing more than sequences of bits. A computer has to decide, how he can display this data in form of characters (which are identified by the computer as numbers).
A code page - which is also known as charset encoding - maps the raw data of a textual document to characters. The original ASCII code page for example only uses 7 bits of an octet (byte) for deciding the character that is represented thus allowing only to map 128 different characters. In the past memory was expensive and computers most often only had registers and busses for 8 bit.
When a mainframe was conceived it had to be decided, which characters it should support. Physicians and mathematicians for example needed special characters for equations. As a result, a computer often shipped with a special codepage.
<<lesscpdetector is a small yet clever framework for codepage detection that integrates different strategies. It may be used as a library for third party software that accesses textual data over network.
It also includes a best-practice implementation in form of a command line tool that allows sorting and transforming large collections of documents based on their codepage.
Available strategies include: jchardet (exclusion, frequency analysis, and guessing), detection of the HTML charset property, and detection of the XML encoding declaration.
What is a code page?
At first, a textual document is nothing more than sequences of bits. A computer has to decide, how he can display this data in form of characters (which are identified by the computer as numbers).
A code page - which is also known as charset encoding - maps the raw data of a textual document to characters. The original ASCII code page for example only uses 7 bits of an octet (byte) for deciding the character that is represented thus allowing only to map 128 different characters. In the past memory was expensive and computers most often only had registers and busses for 8 bit.
When a mainframe was conceived it had to be decided, which characters it should support. Physicians and mathematicians for example needed special characters for equations. As a result, a computer often shipped with a special codepage.
Download (0.70MB)
Added: 2007-04-21 License: MPL (Mozilla Public License) Price:
918 downloads
ARPSpoofDetector 0.1.3
ARPSpoofDetector performs active and passive detection of ARP spoofing and IP (IPv4) address collision. more>>
ARPSpoofDetector performs active and passive detection of ARP spoofing and IP (IPv4) address collision. The program can send healing packets with regular ARP information.
ARPSpoofDetector is new GPL project initialized by NetMasters.CZ customers (specially 100MEGA Distribution). We didnt find suitable intrusion detection system or another applicable software to solve ARP spoofing detection and IP collision without false alarms and with easy configuration for our customers.
Main features:
- passive ARP spoofing detection from broadcast ARP reply packets
- passive IP collision detection from broadcast ARP packets and netbios packets
- active IP collision detection by sending ARP request packets
Log example:
Mon Jul 23 21:49:26 2007
Warning: IP 192.168.1.10 collision detected!
SERVER MAC address: 00:4f:ED:7C:3A:B9
ATTACKER MAC address: 00:20:38:7C:3A:CE
Attacker NETBIOS name: PERSEUS
Attacker NETBIOS group: WORKGROUP
Last attacker IP was 192.168.1.9
IP changes history:
From: Mon Jul 23 21:48:47 2007 To: Mon Jul 23 21:49:10 2007 was IP 192.168.1.3 (maybe over DHCP)
From: Mon Jul 23 21:49:10 2007 To: Mon Jul 23 21:49:26 2007 was IP 192.168.1.6 (maybe over DHCP)
<<lessARPSpoofDetector is new GPL project initialized by NetMasters.CZ customers (specially 100MEGA Distribution). We didnt find suitable intrusion detection system or another applicable software to solve ARP spoofing detection and IP collision without false alarms and with easy configuration for our customers.
Main features:
- passive ARP spoofing detection from broadcast ARP reply packets
- passive IP collision detection from broadcast ARP packets and netbios packets
- active IP collision detection by sending ARP request packets
Log example:
Mon Jul 23 21:49:26 2007
Warning: IP 192.168.1.10 collision detected!
SERVER MAC address: 00:4f:ED:7C:3A:B9
ATTACKER MAC address: 00:20:38:7C:3A:CE
Attacker NETBIOS name: PERSEUS
Attacker NETBIOS group: WORKGROUP
Last attacker IP was 192.168.1.9
IP changes history:
From: Mon Jul 23 21:48:47 2007 To: Mon Jul 23 21:49:10 2007 was IP 192.168.1.3 (maybe over DHCP)
From: Mon Jul 23 21:49:10 2007 To: Mon Jul 23 21:49:26 2007 was IP 192.168.1.6 (maybe over DHCP)
Download (0.034MB)
Added: 2007-08-12 License: GPL v3 Price:
807 downloads
Term::Animation 2.3
Term::Animation is a Perl module that provides a framework to produce sprite animations using ASCII art. more>>
Term::Animation is a Perl module that provides a framework to produce sprite animations using ASCII art. Each ASCII sprite is given one or more frames, and placed into the animation as an animation entity.
An animation entity can have a callback routine that controls the position and frame of the entity. The module can also do collision detection between entities.
INSTALLATION
To install this module type the following:
perl Makefile.PL
make
make test
make install
<<lessAn animation entity can have a callback routine that controls the position and frame of the entity. The module can also do collision detection between entities.
INSTALLATION
To install this module type the following:
perl Makefile.PL
make
make test
make install
Download (0.018MB)
Added: 2006-12-19 License: Perl Artistic License Price:
1062 downloads
Daikon 4.3.1
Daikon is an implementation of dynamic detection of likely invariants. more>>
Daikon is an implementation of dynamic detection of likely invariants. An invariant is a property (such as "x=2*y+5" or "this.next.prev = this" or "myarray is sorted by<<less
Download (3.3MB)
Added: 2007-08-04 License: Open Software License Price:
813 downloads
Devolution Security 3.0.6
Devolution Security is a video surveillance system for Linux based systems. more>>
Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk).
Main features:
- Up to 16 cameras
- Motion detection
- Record on motion detection
- Record up to 25 fps mpeg4 video
- Multicast live streams to local network
- Unicast to internet IP address
- Very configurable
- Themeable X11 interface
- Web based interface
<<lessMain features:
- Up to 16 cameras
- Motion detection
- Record on motion detection
- Record up to 25 fps mpeg4 video
- Multicast live streams to local network
- Unicast to internet IP address
- Very configurable
- Themeable X11 interface
- Web based interface
Download (10MB)
Added: 2005-10-26 License: GPL (GNU General Public License) Price:
1486 downloads
devialog 0.9.0
devialog project is a syslog anomaly detection. more>>
devialog project is a syslog anomaly detection.
Main features:
- Is a behavior/anomaly/signature-based syslog intrusion detection system
- Detects new unknown attacks via anomalies in syslog
- Fits comfortably in heterogeneous Unix/Linux/*BSD environments at the core of a central syslog server
- Generates its own signatures
- Can email anomalies with included generated signatures in to administrators to ignore future similar events
Present log-based IDS:
Nearly all present log-based intrusion detection systems operate using a pre-defined known signature base, usually painstakingly created by hand. They can work well if the creator knows exactly all error and informational messages the software on a system(s) will write to syslog. Most overworked administrators wish there was an easier way to handle system logfiles in a sane, time-saving fashion. Present log-based intrusion detection systems have difficulty in detecting new attacks.
How devialog Differs:
devialog makes syslog parsing far less of a chore than it previously has been. It is functionally the inverse of standard log monitoring software. devialog, by default, reports on what is not know in its signature base, i.e. anomalous. This type of intrusion detection system is considered behavior-based, or anomaly detection. Reporting can be in the form of an email for each anomalous log, or an email for all the logs sent within a pre-defined time window. devialog can also execute commands, or simply write all anomalies to a file for periodical review.
Signature Creation:
For log-based anomaly detection to operate effectively, one must create an extremely large signature base. With an included utility, devialogsig, the signatures are created automatically. Future signature additions are as simple as a cut and paste from the alert email.
Usage: devialog.pl [-OPTIONS [-MORE_OPTIONS]] [--] [PROGRAM_ARG1 ...]
The following single-character options are accepted:
With arguments: -c
Boolean (without arguments): -d -h -v
Enhancements:
- Bug fixes include better handling of lines with some special characters.
- A timing error was fixed within alert generation: sometimes alerts would be sent inadvertently based on the timing of a new log arriving as an alert was sent out in specific high-volume log situations.
- Altered signature generation creates more exact regular expressions.
<<lessMain features:
- Is a behavior/anomaly/signature-based syslog intrusion detection system
- Detects new unknown attacks via anomalies in syslog
- Fits comfortably in heterogeneous Unix/Linux/*BSD environments at the core of a central syslog server
- Generates its own signatures
- Can email anomalies with included generated signatures in to administrators to ignore future similar events
Present log-based IDS:
Nearly all present log-based intrusion detection systems operate using a pre-defined known signature base, usually painstakingly created by hand. They can work well if the creator knows exactly all error and informational messages the software on a system(s) will write to syslog. Most overworked administrators wish there was an easier way to handle system logfiles in a sane, time-saving fashion. Present log-based intrusion detection systems have difficulty in detecting new attacks.
How devialog Differs:
devialog makes syslog parsing far less of a chore than it previously has been. It is functionally the inverse of standard log monitoring software. devialog, by default, reports on what is not know in its signature base, i.e. anomalous. This type of intrusion detection system is considered behavior-based, or anomaly detection. Reporting can be in the form of an email for each anomalous log, or an email for all the logs sent within a pre-defined time window. devialog can also execute commands, or simply write all anomalies to a file for periodical review.
Signature Creation:
For log-based anomaly detection to operate effectively, one must create an extremely large signature base. With an included utility, devialogsig, the signatures are created automatically. Future signature additions are as simple as a cut and paste from the alert email.
Usage: devialog.pl [-OPTIONS [-MORE_OPTIONS]] [--] [PROGRAM_ARG1 ...]
The following single-character options are accepted:
With arguments: -c
Boolean (without arguments): -d -h -v
Enhancements:
- Bug fixes include better handling of lines with some special characters.
- A timing error was fixed within alert generation: sometimes alerts would be sent inadvertently based on the timing of a new log arriving as an alert was sent out in specific high-volume log situations.
- Altered signature generation creates more exact regular expressions.
Download (0.018MB)
Added: 2007-07-09 License: GPL (GNU General Public License) Price:
839 downloads
memtest86+ 1.70
memtest86+ is an enhanced version of memtest86. more>>
memtest86+ is a memory tester which is based on memtest86 v3.0, and provides an up-to-date version of this useful tool, which aims to be as reliable as the original.
It has been fixed to work on AMD64 systems, and also properly detects all current CPUs and motherboard chipsets. The project supports ECC polling for AMD64, i875P, and E7205, and displays some useful settings for the most popular chipsets.
Enhancements:
- A new DMI polling feature was added.
- Support for Core/Core2 Solo/Duo/Quad CPUs was added.
- Support for AMD K8 with DDR2 Memory was added.
- Support for Intel CPUs with 192/384 KB L2 Cache was added.
- Support for FB-DIMM based memory (DMI) was added.
- Detection for ALI CyberAladdin-T (M1644) was added.
- Detection for Turion 64 X2 was added.
- Detection for AMD K8 with unknown chipsets was added.
- Support for ATi Radeon xPress 3200 was added.
- Support for Intel i975X was added.
- Support for Intel Q965/P965 was added.
- Support for Intel Q963/Q965 was added.
- Some bugs were fixed.
<<lessIt has been fixed to work on AMD64 systems, and also properly detects all current CPUs and motherboard chipsets. The project supports ECC polling for AMD64, i875P, and E7205, and displays some useful settings for the most popular chipsets.
Enhancements:
- A new DMI polling feature was added.
- Support for Core/Core2 Solo/Duo/Quad CPUs was added.
- Support for AMD K8 with DDR2 Memory was added.
- Support for Intel CPUs with 192/384 KB L2 Cache was added.
- Support for FB-DIMM based memory (DMI) was added.
- Detection for ALI CyberAladdin-T (M1644) was added.
- Detection for Turion 64 X2 was added.
- Detection for AMD K8 with unknown chipsets was added.
- Support for ATi Radeon xPress 3200 was added.
- Support for Intel i975X was added.
- Support for Intel Q965/P965 was added.
- Support for Intel Q963/Q965 was added.
- Some bugs were fixed.
Download (0.14MB)
Added: 2007-01-17 License: GPL (GNU General Public License) Price:
1036 downloads
Aldegonde 0.0.1
Aldegonde is a simple and efficient media player based on the powerful GStreamer media framework. more>>
Aldegonde is a simple and efficient media player based on the powerful GStreamer media framework.
It supports all file formats supported by GStreamer, including Ogg (Theora, Vorbis, Speex, FLAC), ASF (WMV/WMA, ...), AVI (XviD, MJPEG, DivX ...), Quicktime (MPEG-4, Sorensen, ...), MPEG (1, 2, 4) and so on.
It will also play audio-CDs, video-CDs and DVDs. The primary purpose of Aldegonde is to be a simple example application. It includes a very simple, to-the-point Gtk+ video widget for GStreamer, and it also contains code for automatic disc content detection (VCD, DVD, audio-CD).
The whole of Aldegonde is basically a test bed for features in Totem, which is the official GNOME video/media player.
Main features:
- Support for all popular media formats, including Ogg, AVI, ASF, MPEG and Quicktime.
- Automatic disc content detection. Insert an audio-CD, DVD or VCD and Aldegonde will automatically detect disc type and load the appropriate playback backend.
- Automatic size handling
- Metadata loading support
- Full-screen support
<<lessIt supports all file formats supported by GStreamer, including Ogg (Theora, Vorbis, Speex, FLAC), ASF (WMV/WMA, ...), AVI (XviD, MJPEG, DivX ...), Quicktime (MPEG-4, Sorensen, ...), MPEG (1, 2, 4) and so on.
It will also play audio-CDs, video-CDs and DVDs. The primary purpose of Aldegonde is to be a simple example application. It includes a very simple, to-the-point Gtk+ video widget for GStreamer, and it also contains code for automatic disc content detection (VCD, DVD, audio-CD).
The whole of Aldegonde is basically a test bed for features in Totem, which is the official GNOME video/media player.
Main features:
- Support for all popular media formats, including Ogg, AVI, ASF, MPEG and Quicktime.
- Automatic disc content detection. Insert an audio-CD, DVD or VCD and Aldegonde will automatically detect disc type and load the appropriate playback backend.
- Automatic size handling
- Metadata loading support
- Full-screen support
Download (0.33MB)
Added: 2006-03-02 License: GPL (GNU General Public License) Price:
1332 downloads
ModSecurity 2.1.2
ModSecurity is an intrusion detection and prevention module for the Apache Web server. more>>
ModSecurity is an FREE and GPL lincesed software for intrusion detection and prevention engine for web applications.
Operating as an Apache Web server module, the purpose of ModSecurity is to increase web application security, protecting web applications from known and unknown attacks.
Enhancements:
- This version fixes the issue with subrequests, a problem with full-width Unicode encoding, and a few other small issues.
- It also bundles the most recent version of the Core Rules (which contains many improvements over the previous version) along with the updated documentation.
<<lessOperating as an Apache Web server module, the purpose of ModSecurity is to increase web application security, protecting web applications from known and unknown attacks.
Enhancements:
- This version fixes the issue with subrequests, a problem with full-width Unicode encoding, and a few other small issues.
- It also bundles the most recent version of the Core Rules (which contains many improvements over the previous version) along with the updated documentation.
Download (0.62MB)
Added: 2007-08-07 License: GPL (GNU General Public License) Price:
818 downloads
PacketFence 1.6.1
Packetfence is an open-source network registration and worm detection system. more>>
PacketFence project provides interior worm mitigation and policy enforcement capabilities.
PacketFence be placed strategically throughout the enterprise to compartmentalize networks that may present a threat to valuable resources: VPN concentrators, client and guest networks, extranet connectivity points, etc.
PacketFence is designed to operate in heterogeneous where users are either unable or unwilling, without assistance, to secure their systems properly.
Main features:
- Open Architecture-Based on unmodified open-source components, PacketFence requires no software to be installed on client systems.
- Registration-Registration/authentication can be enforced before admission to the network is granted. Additionally successul completion of a vulnerability scan and acceptance of an AUP can also be required
- Detection-detection of worms, trojans, etc by behavorial or signature-based means
- Remediation-Context-sensitive information provided to user for self-directed remediation.
<<lessPacketFence be placed strategically throughout the enterprise to compartmentalize networks that may present a threat to valuable resources: VPN concentrators, client and guest networks, extranet connectivity points, etc.
PacketFence is designed to operate in heterogeneous where users are either unable or unwilling, without assistance, to secure their systems properly.
Main features:
- Open Architecture-Based on unmodified open-source components, PacketFence requires no software to be installed on client systems.
- Registration-Registration/authentication can be enforced before admission to the network is granted. Additionally successul completion of a vulnerability scan and acceptance of an AUP can also be required
- Detection-detection of worms, trojans, etc by behavorial or signature-based means
- Remediation-Context-sensitive information provided to user for self-directed remediation.
Download (0.96MB)
Added: 2006-08-29 License: GPL (GNU General Public License) Price:
1152 downloads
SIDEN 0.1.0
SIDEN is a distributed network discovery tool used for intrusion detection research. more>>
SIDEN is a distributed network discovery tool used for intrusion detection research. The current SIDEN architecture allows you to simulate coordinated/distributed network probes by a group of attackers.
SIDEN has been tested successfully on the OpenBSD and FreeBSD operating systems. If you try SIDEN and it works on any other platform, please contact me. Yes, it sounds interesting that I havent even tested it out on the popular Linux platform. There should be little reason why it wont work on other platforms (especially UNIX variants), since its fully implemented in Perl.
<<lessSIDEN has been tested successfully on the OpenBSD and FreeBSD operating systems. If you try SIDEN and it works on any other platform, please contact me. Yes, it sounds interesting that I havent even tested it out on the popular Linux platform. There should be little reason why it wont work on other platforms (especially UNIX variants), since its fully implemented in Perl.
Download (0.020MB)
Added: 2006-07-08 License: GPL (GNU General Public License) Price:
1203 downloads
Derbrill Tutorials
Derbrill Tutorials are Free Tutorials For Writing Games and Multimedia Applications in Runtime Revolution with ArcadeEngine. more>>
Derbrill Tutorials are Free Tutorials For Writing Games and Multimedia Applications in Runtime Revolution with ArcadeEngine.
The tutorials come in a visually appealing e-book format which is both easy to read and use, the range of topics covered includes:
* The basics of Revolution such as: stacks, cards, scripts, messages and timers
* How to use geometric properties such as distances, angles and intersection rectangles
* Understanding and using different movements including linear, polygonal, circular and elliptic
* Advanced use of images
* Using the built-in collision detection
<<lessThe tutorials come in a visually appealing e-book format which is both easy to read and use, the range of topics covered includes:
* The basics of Revolution such as: stacks, cards, scripts, messages and timers
* How to use geometric properties such as distances, angles and intersection rectangles
* Understanding and using different movements including linear, polygonal, circular and elliptic
* Advanced use of images
* Using the built-in collision detection
Download (4.2MB)
Added: 2005-10-17 License: Freeware Price:
1470 downloads
JFwadmin 0.8
JFwadmin provides a Java high level GUI for ipchains. more>>
JFwadmin provides a Java high level GUI for ipchains.
JFwadmin is a Java 2 high-level X11 tool for ipchains.
The GUI displays easy-to-understand services.
Features include scripts generation, firewall save and restore, automatic interface and IP address and routes detection, current firewall configuration display, and handling of masq-modules and port-forwarding.
<<lessJFwadmin is a Java 2 high-level X11 tool for ipchains.
The GUI displays easy-to-understand services.
Features include scripts generation, firewall save and restore, automatic interface and IP address and routes detection, current firewall configuration display, and handling of masq-modules and port-forwarding.
Download (0.26MB)
Added: 2007-03-05 License: GPL (GNU General Public License) Price:
963 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above detection search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
