hardened
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 24
Hardened Linux 1.6.6-2
Hardened Linux is a hardened distribution based on a minimalized Slackware Linux 11.0. more>>
Hardened Linux is a hardened distribution based on a minimalized Slackware Linux 11.0.
This distribution is still under heavy development.
Hardened Linux (a.k.a. "Wendzel Linux") is a security distribution with 3 main targets:
- maximum security
- maximum stability
- maximum usuability
It is optimized to run on as firewall system, vpn gateway, IDS system and authentication system. Currently not all of these features are fully implemented.
Enhancements:
- This just an updated version of the 1.6.6-snapshot release. This release includes our current packages (gcc-4.2, glibc-2.5, kernel 2.6.21.3 and different other package updates). Nothing else has changed. We released this new version because it will still take a few weeks (if not months) before we can release the next snapshot version that includes a completely new package system and a completely new installer system. Please report any kind of bugs.
<<lessThis distribution is still under heavy development.
Hardened Linux (a.k.a. "Wendzel Linux") is a security distribution with 3 main targets:
- maximum security
- maximum stability
- maximum usuability
It is optimized to run on as firewall system, vpn gateway, IDS system and authentication system. Currently not all of these features are fully implemented.
Enhancements:
- This just an updated version of the 1.6.6-snapshot release. This release includes our current packages (gcc-4.2, glibc-2.5, kernel 2.6.21.3 and different other package updates). Nothing else has changed. We released this new version because it will still take a few weeks (if not months) before we can release the next snapshot version that includes a completely new package system and a completely new installer system. Please report any kind of bugs.
Download (195MB)
Added: 2007-07-07 License: GPL (GNU General Public License) Price:
839 downloads
DieHard 1.1
DieHard automatically hardens software applications against a wide range of bugs. more>>
DieHard project automatically hardens software applications against a wide range of bugs.
These bugs, known as memory errors, often end up as serious security vulnerabilities, cause crashes, or lead to unpredictable behavior.
DieHard either eliminates these bugs altogether, or avoids them with high probability.
DieHard works in two modes: standalone and replicated. The standalone version replaces the memory manager with the DieHard randomized memory manager. This randomization increases the odds that buffer overflows will have no effect, and reduces the risk of dangling pointers.
The replicated version provides greater protection against errors by running several instances of the application simultaneously and voting on their output. Because each replica is randomized differently, each replica will likely have a different output if it has an error, and some replicas are likely to run correctly despite the error.
The standalone version works for Linux, Solaris, and Windows, while the replicated version currently only supports Linux or Solaris console applications.
Enhancements:
- This release features dramatically reduced memory consumption, fixes logic (for Windows) that protects against double free errors, fixes the internal random number generator, enhancing randomness, and adds more robust whitelist processing for the DieHard system, for Windows protection.
<<lessThese bugs, known as memory errors, often end up as serious security vulnerabilities, cause crashes, or lead to unpredictable behavior.
DieHard either eliminates these bugs altogether, or avoids them with high probability.
DieHard works in two modes: standalone and replicated. The standalone version replaces the memory manager with the DieHard randomized memory manager. This randomization increases the odds that buffer overflows will have no effect, and reduces the risk of dangling pointers.
The replicated version provides greater protection against errors by running several instances of the application simultaneously and voting on their output. Because each replica is randomized differently, each replica will likely have a different output if it has an error, and some replicas are likely to run correctly despite the error.
The standalone version works for Linux, Solaris, and Windows, while the replicated version currently only supports Linux or Solaris console applications.
Enhancements:
- This release features dramatically reduced memory consumption, fixes logic (for Windows) that protects against double free errors, fixes the internal random number generator, enhancing randomness, and adds more robust whitelist processing for the DieHard system, for Windows protection.
Download (3.7MB)
Added: 2007-05-26 License: Free for non-commercial use Price:
881 downloads
MaraDNS 1.0.35
MaraDNS is a fully functional DNS server. more>>
MaraDNS is a package that implements the Domain Name Service (DNS), an essential internet service.
MaraDNS is intended for environments where a DNS server must be secure and where the server must use the absolute minimum number of resources possible.
MaraDNS was created in response to issues people had with the DNS servers available in early 2001; and has the following design goals:
- Security-aware programming. A DNS server needs to be secure. I have a number of security features in the code, including:
1. The code uses a special string library which is resistant to buffer overflows.
2. The code, if started as root, mandates running as an unprivledged user in a chroot() jail.
- Open-Source. The 1.0 release of the DNS server is public-domain code; the next release will be released under a very liberal BSD-style license.
- Simplicity. This DNS server has the minimum number of features needed to correctly act as an authoritative and/or recursive name server.
Enhancements:
- The AES variant that MaraDNS uses has been hardened against some cache timing attacks that cryptographers have recently published.
<<lessMaraDNS is intended for environments where a DNS server must be secure and where the server must use the absolute minimum number of resources possible.
MaraDNS was created in response to issues people had with the DNS servers available in early 2001; and has the following design goals:
- Security-aware programming. A DNS server needs to be secure. I have a number of security features in the code, including:
1. The code uses a special string library which is resistant to buffer overflows.
2. The code, if started as root, mandates running as an unprivledged user in a chroot() jail.
- Open-Source. The 1.0 release of the DNS server is public-domain code; the next release will be released under a very liberal BSD-style license.
- Simplicity. This DNS server has the minimum number of features needed to correctly act as an authoritative and/or recursive name server.
Enhancements:
- The AES variant that MaraDNS uses has been hardened against some cache timing attacks that cryptographers have recently published.
Download (0.47MB)
Added: 2005-11-29 License: BSD License Price:
1426 downloads
Dial2Net 0.1.3
Dial2net is an application that configures a PPP (dialup) connection according to the ISP specified by the user. more>>
Dial2net is an application that configures a PPP (dialup) connection according to the ISP specified by the user. Both PAP and CHAP protocols are supported. This application is aimed toward users new to linux that are trying to get thier system configured so they can access the internet via a ppp connection. The scope of this project is to create a simple, easy to use application that gets the job done veri good.
What differs is a few things by other applications:
1. Give the user the ability to choose thier ISP from a list to make things simpler and reduce the need for manual configuration.
2. Include an application (Lan2Net) that will setup a Local Area Network that will share an internet connection.
3. A slew of useful tools that make day-to-day use of a ppp connection easier.
After the initial installation...
Run dial2net to dial out and dial2net -d to disconnect. If you need to reconfigure dial2net for any reason, run dial2net -s again for setup mode.
Enhancements:
- added autoredial function
- minor bugfix
<<lessWhat differs is a few things by other applications:
1. Give the user the ability to choose thier ISP from a list to make things simpler and reduce the need for manual configuration.
2. Include an application (Lan2Net) that will setup a Local Area Network that will share an internet connection.
3. A slew of useful tools that make day-to-day use of a ppp connection easier.
After the initial installation...
Run dial2net to dial out and dial2net -d to disconnect. If you need to reconfigure dial2net for any reason, run dial2net -s again for setup mode.
Enhancements:
- added autoredial function
- minor bugfix
Download (0.006MB)
Added: 2006-06-30 License: GPL (GNU General Public License) Price:
1212 downloads
Astaro Security Linux 7.5 Beta
Astaro Security Linux is an award-winning, unique network security solution in an integrated and easy-to-use and manage package. more>>
Astaro Security Linux 7.5 Beta offers you a wonderful and extremely useful product which is an award-winning, unique network security solution in an integrated and easy-to-use and manage package. Astaro Security Linux includes a combination of the following security applications:
- A Firewall with stateful packet inspection and application proxies guards Internet communications traffic in and out of the organization.
- A Virtual Private Network (VPN) gateway assures secure communications with remote offices, road warriors, and telecommuters.
- Anti-Virus defends computers from both email and web-bourne viruses.
- Intrusion Protection detects and stops hostile probes and application-based attacks.
- Spam Filtering eliminates the productivity drain of opening and deleting unsolicited emails.
- Surf Protection (Content Filtering) and Spyware Protection improve productivity by blocking inappropriate web activities, provide full protection from user tracking threats and violation of privacy.
Major Features:
- Protects all types of networks Windows, Linux, Unix and others.
- Delivers comprehensive features at low cost maximizing your ROI (return on investment).
- Highly effective. Has won numerous industry awards. Beat Cisco and Checkpoint in InfoWorld magazine product review, Beat IBM and Computer Associates in Linux World for Best Security Application.
- Integrated management platform features an intuitive browser-based interface and one-step updates for rapid deployment and easy management.
- Can be installed in under 15 minutes or purchased pre-installed on security appliances.
- Can start with firewall, VPN and spam protection and add other security applications as needed, seamlessly.
- Runs as a dedicated application server on top of a hardened operating system, which relieves operating system management headaches.
- Runs on systems ranging from small devices up to large multi-processor systems utilizing gigabytes of memory.
- Redundant systems can be configured to provide high availability and automatic failover in case of hardware or network failures.
- Load balancing improves performance - traffic shaping can set priorities by network, service and protocol.
- Logging, automatic backup, and diagnostic tools support high reliability.
- Free online evaluation workshop to get you started.
Enhancements:
- Major New Things:
- Intrusion Protection Performance
- Uses new version of the IPS engine
- Scales massively when used with Multi-Core CPU/Appliances
- Real-Time Bandwidth Monitor
- New Interface utilization bars on Dashboard (setup scale via QOS)
- Click for detailed overview as to "whats happening in my network right now"
- Import/Export Widget
- Gives the ability to work with manual lists for many features/fields
- Useful to import a large blacklist (for example) into the URL Blacklist
- Can been seen in many user-input boxes in Web, Mail and more. (Green Up/Down Arrows)
- Clone Objects
- Easily duplicate existing objects for quick re-use.
- Supported in most places for many objects (Definitions, Services, Certain Profiles/Actions)
- Extended Network Security Reporting
- Added Detailed Packet Filter/Firewall Reports
- Added Detailed IM/P2P Reports
- Reputation Support for Web Security
- Allows use of the trustedsource.org reputation for Web Filtering
- Documentation coming, for now visit their site/FAQ for more info on reputations
- DHCP Improvements
- Automatically map a current lease to a static assignment
- Limit DHCP leases to those with static assignments only
- Configurable DHCP lease time
- Servers retain configuration when enabled/disabled
- Multicast Routing Daemon
- PIM-SM Routing support
- More documentation on this implementation to come. Experiment with it and if it solves your needs.
- Other New Things:
- Windows SSL VPN Upgraded - New Client which supports X64 and many other options (download again via the UserPortal)
- Improved HTTP Caching - Increases hit/usage rates and makes the cache more effective.
- Quarantine/UserPortal Usability - Adds navigation to the bottom (supplementing the existing controls at the top), large amounts (250-1000) of displayed items per page, and sorting by subject line.
- Default Definition for "Internet" - Allows to specify "Internet" as an object which will exclude internal network(s) to aid policy creation (0.0.0.0/0 on Gateway interface)
- Customizable Shortcuts - Change the default Ctrl assignments to fit your preference
- Improved Definition/Services Sidebar - Mouseover now instantly shows full name and extended info to aid identifying desired object for drag n drop.
- User List shows static IPs - if assigned/configured (no need to edit in order to view)
- Live Log Negation - use to filter live logs to not show lines that match "-" entries i.e. -test to remove lines containing "test"
- Console/SSH Logins Trigger a notification - provides admin the needed insight when accessed.
- Instant Email Backup - Button for every created backup file which allows it to be sent immediately via email to configured addresses
- Custom text for notifications - Allows easier identification of which installation is sending the message. Especially useful if managing multiple sites using notifiers.
- Test NTP Sync - Button to immediately poll the configured NTP server
- Automatic Backup before Up2Date install
- Configurable Default for Lists - Allows for the amount of items per page (Packet Filter Rules, or anywhere there is a number amounts drop down) to have a larger default view
- Cluster/HA Serial Number View - Information on connected units made easier
- Schedule Firmware Installation - When an Up2Date for Firmware is available, you can schedule it to auto-install at a certain time (not a recurring setting)
- WebAdmin Network Section Split - Now two sections; "Network" and "Network Services" for usability.
- Search Boxes Retain Data - No need to re-enter query when returning from a drill down/result click.
- System Restart Reason - Allows logging of "why was system restarted" in the notification
- Group Tool tips for Members - Easily discern Network/Service Group members without having to edit in order to view
- Reporting Exclusions - Used to remove unwanted entries from various reports (such as Google-analytics from Web Security tables
- Log Flag for NAT Rules - Similar to packet filter, tells you which NAT rule was matched as part of traffic handling
- Masquerading for Additional IP Addresses - Allows the use of Masquerading (vs. just SNAT) for additional IPs bound to an interface
- Support for Multiple Authentication Servers - The authentication server section has been redesigned to support fallback/failover in an easier format, with many usability improvements
- SNMP MIB - Downloadable via the SNMP section of WebAdmin
- Up2date Status Reworked - Clarifies the current status of a Firmware Up2date to avoid confusion regarding the availability, download progress etc...of an issued Up2date.
- Inline/Snap Report Links - Directly moves the Admin to the relevant details report when browsing the embedded daily reports located throughout WebAdmin
- Global POP3 Sender Blacklist - Quarantined as "other" in the QM/EUP
- Dashboard RSS Feed - Provides visibility to select Astaro-issued items via WebAdmin
- Other magic features, enhancements, and usability improvements
Added: 2009-05-30 License: Free for non-commerc... Price: USD290.00
13 downloads
Other version of Astaro Security Linux
Runs as a dedicated application server on top of a hardened operating system, which relieves operating system management headaches. Runs on systems ranging from small devices up to large multiPrice: USD290.00
License:Free for non-commerc...
License:Free for non-commerc...
Price: USD290.00
License:Free for non
License:Free for non
Runs as a dedicated application server on top of a hardened operating system, which relieves operating system management headaches. - Runs on systems ranging from small devices up to largePrice: $290
License:Free for non-commercial use
License:Free for non-commercial use
Price: $290
License:Free for non-commercial use
License:Free for non-commercial use
Diet-Router 0.3
Diet-Router provides a singe floppy DSL router. more>>
Diet-Router provides a singe floppy DSL router.
Diet-Router is a Linux router that is small enough to fit on a single floppy disk. It focuses more on security than on functionality.
Diet-Router is a Linux router built with the dietlibc. It is small enough to fit on a single floppy disk. You may think that there are several other Linux routers, which come with more features and you are right. I build this router package more with the view on security than of functionality. So this project differs a lot from most other router or mini-Linux projects.
Main features:
- I use a 2.4.x kernel to have the great features of net-filter.
- I patch some net-filter extensions to have even more filter functions.
- I harden the kernel with the grsecurity kernel patch.
- Kernel modules are disabled.
- By default root login is disabled - even on the console.
How does it work:
First of all, all programs are linked statically. This is the main idea of this system. No libraries are needed. It uses busybox and tinylogin, two typical multi-call-binaries for small systems. The iptables, iptables-restore and iptables-save commands have been made a multi-call binary by me. The pppd and pppoe programs have only been patched to compile with the dietlibc. The minit and od_syslog are really small programs, from people with much more knowledge of programming than me. So, special thanks to Felix von Leitner, Olaf Drefs and all the dietlibc/libowfat programmers.
Enhancements:
- Updated dietlibc, libowfat, dropbear, ppp, kernel and grsecurity to recent
- versions.
- Added new packages dhcp server (udhcpd) and vi (e3).
- The build system has been completely rewritten and documented.
- It supports multiple downloads, a simple interface for package building/setup and target file descriptions including file owner and permissions.
- Some simple checks for build requirements are implementet.
- The setup is now able to configure mutiple network interfaces and also mproxy, udhcpd and dnscache can be configured for eachnetwork interface.
- All packages have at least two internet sources.
- Support for disc based target systems has been added.
<<lessDiet-Router is a Linux router that is small enough to fit on a single floppy disk. It focuses more on security than on functionality.
Diet-Router is a Linux router built with the dietlibc. It is small enough to fit on a single floppy disk. You may think that there are several other Linux routers, which come with more features and you are right. I build this router package more with the view on security than of functionality. So this project differs a lot from most other router or mini-Linux projects.
Main features:
- I use a 2.4.x kernel to have the great features of net-filter.
- I patch some net-filter extensions to have even more filter functions.
- I harden the kernel with the grsecurity kernel patch.
- Kernel modules are disabled.
- By default root login is disabled - even on the console.
How does it work:
First of all, all programs are linked statically. This is the main idea of this system. No libraries are needed. It uses busybox and tinylogin, two typical multi-call-binaries for small systems. The iptables, iptables-restore and iptables-save commands have been made a multi-call binary by me. The pppd and pppoe programs have only been patched to compile with the dietlibc. The minit and od_syslog are really small programs, from people with much more knowledge of programming than me. So, special thanks to Felix von Leitner, Olaf Drefs and all the dietlibc/libowfat programmers.
Enhancements:
- Updated dietlibc, libowfat, dropbear, ppp, kernel and grsecurity to recent
- versions.
- Added new packages dhcp server (udhcpd) and vi (e3).
- The build system has been completely rewritten and documented.
- It supports multiple downloads, a simple interface for package building/setup and target file descriptions including file owner and permissions.
- Some simple checks for build requirements are implementet.
- The setup is now able to configure mutiple network interfaces and also mproxy, udhcpd and dnscache can be configured for eachnetwork interface.
- All packages have at least two internet sources.
- Support for disc based target systems has been added.
Download (0.12MB)
Added: 2007-03-02 License: GPL (GNU General Public License) Price:
973 downloads
Gentoo Linux 2007.0 LiveCD
Gentoo Linux uses an enhanced BSD ports-style package system. more>>
The Gentoo Release Engineering team proudly announces the release of Gentoo Linux 2006.0. Gentoo Linux 2006.0, the first release in the 2006 series, represents improvements across many architectures since the 2005.1 release.
Major highlights in the release include KDE 3.4.3, GNOME 2.12.2, XFCE 4.2.2, GCC 3.4.4 and a 2.6.15 kernel. This is also the first release with the Gentoo Linux Installer officially debuting on the x86 LiveCD, which will fully replace the Universal and PackageCD set. The LiveCD also features a fully-fledged Gnome environment. Later releases will include KDE support as well as a new LiveDVD.
The PPC64 team has made significant improvements in its release media. IBMs hardware donation to the team greatly helped this and ensured a smooth release. The CDs feature 64-bit kernels and 32-bit userlands rather than the previous pure 64-bit environment. Optimized stages are available for the G5 and POWER5 processors, making Gentoo the first distribution optimized for POWER5 out-of-the-box. The new release includes an experimental CD with full framebuffer support for dual-core G5 machines along with thermal management features. This makes Gentoo the first to market with release media with this level of support.
PPC and PPC64 profiles received further reorganization. They now match those of other 32/64-bit architectures such as SPARC and MIPS, unifying the look of the tree and allowing easier creation of specific profiles (for example, for server use) in the future. The PPC discs improve support for newer Apple laptops such as the last series of PowerBooks, which 2005.1 did not support, and feature improved OldWorld support with BootX on the universal CDs. The PPC team now produces the PackageCDs in a G4 and a ppc-generic configuration, especially useful for older and slower machines.
The Hardened team is pleased to release both 2.4 and 2.6 kernel targeted stages for the x86 platform. The previously experimental non-multilib AMD64 stages are now part of the 2006.0 release, while Hardened Gentoo with multilib on AMD64 has become possible and the team is releasing experimental stages.
The 2006.0 AMD64 release moves EM64T support out of the experimental realm. The InstallCDs feature support for NVIDIA SATA and for SysKonnect Yukon2 network cards as well as the inclusion of 32-bit Java Support. An experimental LiveCD is also available, featuring the Gentoo Linux Installer.
The Alpha team now provides split NPTL profiles as part of the 2006.0 release -- NPTL must use a 2.6 kernel, and those who require a 2.4 kernel or do not wish to enable NPTL can use the no-nptl subprofile instead to not take advantage of the new threading model. Stage tarballs are now provided for both variants, and the InstallCD provides both 2.4 and 2.6 kernels.
SPARC has moved to GCC 3.4.5 from the older 3.3 series and also to glibc 2.3.5 from 2.3.3 -- the profile features a 2.6 kernel and headers. However, this feature remains experimental and the SPARC team built the release media with the 2.4 subprofile. Testing from SGI Quality Assurance allowed the IA64 team to update its InstallCD to boot on SGI Prism machines.
Gentoo Linux is a community-driven project committed to producing a high-quality open source distribution; more information regarding this release, such as detailed release notes will be available on the Gentoo Release Engineering teams project page.
Gentoo Linux uses an enhanced BSD ports-style package system.
<<lessMajor highlights in the release include KDE 3.4.3, GNOME 2.12.2, XFCE 4.2.2, GCC 3.4.4 and a 2.6.15 kernel. This is also the first release with the Gentoo Linux Installer officially debuting on the x86 LiveCD, which will fully replace the Universal and PackageCD set. The LiveCD also features a fully-fledged Gnome environment. Later releases will include KDE support as well as a new LiveDVD.
The PPC64 team has made significant improvements in its release media. IBMs hardware donation to the team greatly helped this and ensured a smooth release. The CDs feature 64-bit kernels and 32-bit userlands rather than the previous pure 64-bit environment. Optimized stages are available for the G5 and POWER5 processors, making Gentoo the first distribution optimized for POWER5 out-of-the-box. The new release includes an experimental CD with full framebuffer support for dual-core G5 machines along with thermal management features. This makes Gentoo the first to market with release media with this level of support.
PPC and PPC64 profiles received further reorganization. They now match those of other 32/64-bit architectures such as SPARC and MIPS, unifying the look of the tree and allowing easier creation of specific profiles (for example, for server use) in the future. The PPC discs improve support for newer Apple laptops such as the last series of PowerBooks, which 2005.1 did not support, and feature improved OldWorld support with BootX on the universal CDs. The PPC team now produces the PackageCDs in a G4 and a ppc-generic configuration, especially useful for older and slower machines.
The Hardened team is pleased to release both 2.4 and 2.6 kernel targeted stages for the x86 platform. The previously experimental non-multilib AMD64 stages are now part of the 2006.0 release, while Hardened Gentoo with multilib on AMD64 has become possible and the team is releasing experimental stages.
The 2006.0 AMD64 release moves EM64T support out of the experimental realm. The InstallCDs feature support for NVIDIA SATA and for SysKonnect Yukon2 network cards as well as the inclusion of 32-bit Java Support. An experimental LiveCD is also available, featuring the Gentoo Linux Installer.
The Alpha team now provides split NPTL profiles as part of the 2006.0 release -- NPTL must use a 2.6 kernel, and those who require a 2.4 kernel or do not wish to enable NPTL can use the no-nptl subprofile instead to not take advantage of the new threading model. Stage tarballs are now provided for both variants, and the InstallCD provides both 2.4 and 2.6 kernels.
SPARC has moved to GCC 3.4.5 from the older 3.3 series and also to glibc 2.3.5 from 2.3.3 -- the profile features a 2.6 kernel and headers. However, this feature remains experimental and the SPARC team built the release media with the 2.4 subprofile. Testing from SGI Quality Assurance allowed the IA64 team to update its InstallCD to boot on SGI Prism machines.
Gentoo Linux is a community-driven project committed to producing a high-quality open source distribution; more information regarding this release, such as detailed release notes will be available on the Gentoo Release Engineering teams project page.
Gentoo Linux uses an enhanced BSD ports-style package system.
Download (700.3MB)
Added: 2007-05-08 License: GPL (GNU General Public License) Price:
921 downloads
DistCC LiveCD 3.3.6
Distcc Livecd is a small bootable cdrom that contains a uClibc Linux system, the GNU compiler and a distcc daemon. more>>
Distcc Livecd is a small bootable cdrom that contains a uClibc Linux system, the GNU compiler and a distcc daemon.
The purpose of this CD is to be able to borrow compile CPU power from computers without installing anything on the harddisk. The CD is build with the Gentoo portage framework.
Unlike distccKnoppix, the C compiler on this CD (the default gentoo hardened gcc compiler) supports position independent code (PIE) and stack smashing protection (SSP).
Contents:
gcc
distcc
dropbear ssh
<<lessThe purpose of this CD is to be able to borrow compile CPU power from computers without installing anything on the harddisk. The CD is build with the Gentoo portage framework.
Unlike distccKnoppix, the C compiler on this CD (the default gentoo hardened gcc compiler) supports position independent code (PIE) and stack smashing protection (SSP).
Contents:
gcc
distcc
dropbear ssh
Download (40.1MB)
Added: 2006-07-04 License: GPL (GNU General Public License) Price:
1212 downloads
Iter Vehemens ad Necem 0.50
Iter Vehemens ad Necem project is a graphical roguelike game. more>>
Iter Vehemens ad Necem project is a graphical roguelike game.
Iter Vehemens ad Necem (IVAN) is a graphical roguelike game which currently runs in Windows, DOS, and Linux. It features advanced bodypart and material handling, multi-colored lighting and, above all, deep gameplay.
Fellow adventurer, turn back while you can! For here begins the roguelike Iter Vehemens ad Necem, a Violent Road to Death. If you choose to travel along it, you will dive into countless exciting adventures to gain items of great magic, attain powerful equipment made of mysterious materials, bathe in the blessings of mighty gods and recruit loyal allies of various shapes and sizes.
Unfortunately, along the way you will also often be dangerously injured, poisoned, catch numerous diseases, lose several limbs and transform into manifold different kinds of pitiful creatures in the darkest depths of hostile dungeons. And, at the end of the road, you are bound to perish in a most gruesome and painful way. Dont say we didnt warn you.
Enhancements:
- fluids can now cover items and characters and interact with them
- items made of iron alloys can now rust
- added directional light and day and night which use it
- added some cosmetical weather effects
- New Attnam has now many new NPCs, for instance a sumo wrestler who can be challenged
- polymorph control is now more interesting; you need to see a monster once before you can polymorph into it, and more powerful ones require more intelligence
- added wands of acid rain, mirroring and necromancy
- added scrolls of detect material, harden material and golem creation
- added several new monsters, eg. powerful named archangels for each god and necromancers who raise skeletons and zombies to do their bidding
- one can now give pets tactical commands, change their equipment and use them to carry extra stuff (these are accessed using Chat and Issue commands keys)
- the player can now panic if he gets hit too much, like the monsters have done in previous versions
- the player can now become exhausted if he fights for too long and/or uses the new run command too much
- spiders are now able to make webs
- you can now get stuck to slime
- badly hurt/trapped bodyparts now become unusable until they regain some HP/become untrapped
- it is now possible to browse detailed death reasons of individual monsters in the postgame massacre lists
- added many new informative graphical details, for instance recently altered attributes are shown with a different color for some time
- gloomy cave is now longer and has more special levels and rooms
- all the endgame battles are more complex
- added leprosy, a nasty disease which causes your limbs to drop off randomly
<<lessIter Vehemens ad Necem (IVAN) is a graphical roguelike game which currently runs in Windows, DOS, and Linux. It features advanced bodypart and material handling, multi-colored lighting and, above all, deep gameplay.
Fellow adventurer, turn back while you can! For here begins the roguelike Iter Vehemens ad Necem, a Violent Road to Death. If you choose to travel along it, you will dive into countless exciting adventures to gain items of great magic, attain powerful equipment made of mysterious materials, bathe in the blessings of mighty gods and recruit loyal allies of various shapes and sizes.
Unfortunately, along the way you will also often be dangerously injured, poisoned, catch numerous diseases, lose several limbs and transform into manifold different kinds of pitiful creatures in the darkest depths of hostile dungeons. And, at the end of the road, you are bound to perish in a most gruesome and painful way. Dont say we didnt warn you.
Enhancements:
- fluids can now cover items and characters and interact with them
- items made of iron alloys can now rust
- added directional light and day and night which use it
- added some cosmetical weather effects
- New Attnam has now many new NPCs, for instance a sumo wrestler who can be challenged
- polymorph control is now more interesting; you need to see a monster once before you can polymorph into it, and more powerful ones require more intelligence
- added wands of acid rain, mirroring and necromancy
- added scrolls of detect material, harden material and golem creation
- added several new monsters, eg. powerful named archangels for each god and necromancers who raise skeletons and zombies to do their bidding
- one can now give pets tactical commands, change their equipment and use them to carry extra stuff (these are accessed using Chat and Issue commands keys)
- the player can now panic if he gets hit too much, like the monsters have done in previous versions
- the player can now become exhausted if he fights for too long and/or uses the new run command too much
- spiders are now able to make webs
- you can now get stuck to slime
- badly hurt/trapped bodyparts now become unusable until they regain some HP/become untrapped
- it is now possible to browse detailed death reasons of individual monsters in the postgame massacre lists
- added many new informative graphical details, for instance recently altered attributes are shown with a different color for some time
- gloomy cave is now longer and has more special levels and rooms
- all the endgame battles are more complex
- added leprosy, a nasty disease which causes your limbs to drop off randomly
Download (MB)
Added: 2007-01-03 License: GPL (GNU General Public License) Price:
1029 downloads
NetSecL 2.1
NetSecL is a security-focused Linux distribution. more>>
NetSecL (previously known as ISlack) is a security-focused Linux distribution.
It includes Grsecurity by default. Most of the numerous security-related software is suited for penetration testing of your network.
There are also security tools for testing your local security and IDSs for monitoring.
The configuration of NetSecL is hardened by default: (listening for connection) services are turned off, and incoming ports are closed.
Enhancements:
- This release introduces GCC with Stack Smashing Protection, which increases the security of the compiled packages (i486_64).
- There are more than 250 Package Updates.
- Most networking packages are now i486_64 packages.
- This release fixes some unnoticed bugs in the 2.0 version.
- Hardware recognition data was updated to the latest available.
<<lessIt includes Grsecurity by default. Most of the numerous security-related software is suited for penetration testing of your network.
There are also security tools for testing your local security and IDSs for monitoring.
The configuration of NetSecL is hardened by default: (listening for connection) services are turned off, and incoming ports are closed.
Enhancements:
- This release introduces GCC with Stack Smashing Protection, which increases the security of the compiled packages (i486_64).
- There are more than 250 Package Updates.
- Most networking packages are now i486_64 packages.
- This release fixes some unnoticed bugs in the 2.0 version.
- Hardware recognition data was updated to the latest available.
Download (627.1MB)
Added: 2007-07-16 License: Freeware Price:
830 downloads
Smoothwall 3.0 Beta 1
Smoothwall is an open source firewall distribution based on the GNU/Linux operating system more>>
SmoothWall Express is an open source firewall distribution based on the GNU/Linux operating system.
Linux is the ideal choice for security systems; it is well proven, secure, highly configurable and freely available as open source code.
SmoothWall includes a hardened subset of the GNU/Linux operating system, so you dont have to install any separate OS.
Designed for ease of use, SmoothWall is configured via a web-based GUI, and requires absolutely no knowledge of Linux to install or use.
<<lessLinux is the ideal choice for security systems; it is well proven, secure, highly configurable and freely available as open source code.
SmoothWall includes a hardened subset of the GNU/Linux operating system, so you dont have to install any separate OS.
Designed for ease of use, SmoothWall is configured via a web-based GUI, and requires absolutely no knowledge of Linux to install or use.
Download (65.6MB)
Added: 2009-04-10 License: Freeware Price:
203 downloads
Gibraltar Firewall 2.4.1
Gibraltar is a Debian-based router/firewall distribution. more>>
Gibraltar Firewall is a firewall and router package, based on Debian/GNU Linux, which perfectly meets all individual requirements for a state-of-the-art firewall.
Independent of the kind of Internet connection (dedicated line, ADSL, dial-up connection), Gibraltar provides for secure connections. So you can turn to something more important without ruffle and worries - your job!
Gibraltar is free for private use. The private license is restricted to a maximum of 5 concurrent connections and includes the easy-to-use webinterface. For obtaining a private license, please contact us via email.
Attention: Without a valid license file, Gibraltar will not run properly!
For the private use of Gibraltar, no claim on support or guarantee can be raised.
All ISO images are copyright of Rene Mayrhofer and eSYS Information Systems GmbH, but may be copied and distributed freely. Several components of Gibraltar are under GPL or BSD license. For detailed usage licenses read the packet documentations under /usr/share/doc on the ISO image.
If you would like to distribute Gibraltar commercially, please refer to our partner program.
Gibraltar can be completely configured with the web-based configuration tool GibADMIN. The configuration of Gibraltar occurs over an encoded, secured connection, and can be done with any browser. The web-interface is designed intuitional and concise, and enables the administrator to change the configuration very easy and quick.
Gibraltar convinces through jutting flexibility and extensive functionality.
Main features:
- SYSTEM
- Live CD technology: Gibraltar boots and runs fully off CD-ROM
- No hard disk installation required
- Specially hardened Linux kernel
- Languages: English, German, Finnish
- Remote configuration with web interface (SSL 128 Bit) or remote login (SSH)
- Easy configuration management
- Automatic live updates: interval can be configured
- NETWORK SUPPORT
- Ethernet: 10/100/1000 MBit/s: static or DHCP, virtual IP addresses
- ADSL Ethernet modems: PPP over Ethernet, PPTP
- ADSL USB modems: PPP over ATM
- Modem dial in: serial, USB
- Unlimited number of network interfaces
- STATEFUL PACKET INSPECTION
- Protocol support: ICMP, TCP, UDP, GRE, ESP, AH, IPv4-over-IPv6
- Flexible packet filter: interface, MAC address, IP address, service, port,....
- NAT: Network address translation: dynamic and static
- PAT: Port address translation: load balancing (Round Robin)
- Free definition of aliases and groups: addresses and ports
- DoS/flood - protection: predefined, expandable
- Randomized IP sequencing
- Selective TTL manipulation
- Protocol pass through: PPTP, FTP, H.323, IRC
- VPN (VIRTUAL PRIVATE NETWORKS)
- VPN IPSec gateway
- VPN PPTP server: MPPE 128 Bit data encryption
- Network-to-network VPN
- Network-to-client VPN: compatible with Microsoft Windows 2000 / XP
- Unlimited number of VPN tunnels
- Authentication with PSK (Private shared key) and X.509 certificates
- Encryption: 3DES, Blowfish, Twofish, AES, CAST, Serpent
- Authentication PPTP: CHAP, MS-CHAPv1, MS-CHAPv2
- NAT traversal
- Perfect forward secrecy (PFS)
- DEEP PACKET INSPECTION
- Secure SMTP relay: incoming, outgoing, attachment blocking, block lists, antivirus and spam protection
- Transparent HTTP proxy: no client configuration necessary, spam protection
- User authentication: user list, active directory integration, LDAP
- Content caching
- Content scanning: antivirus, cookies, active X, java script
- FTP proxy: transparent outgoing, incoming
- Transparent POP3 proxy: antivirus, spam protection and protection of dangerous attachments
- ADDITIONAL SERVICES
- Dynamic DNS
- DHCP server
- Secure DNS resolve
- SSL wrapper for arbitrary services
- Portscan detection
- Antispam filter: rule based, Bayes, RBL, Razor and DCC
- ClamAV virus scanner
- OPTIONAL: Kaspersky virus scanner
<<lessIndependent of the kind of Internet connection (dedicated line, ADSL, dial-up connection), Gibraltar provides for secure connections. So you can turn to something more important without ruffle and worries - your job!
Gibraltar is free for private use. The private license is restricted to a maximum of 5 concurrent connections and includes the easy-to-use webinterface. For obtaining a private license, please contact us via email.
Attention: Without a valid license file, Gibraltar will not run properly!
For the private use of Gibraltar, no claim on support or guarantee can be raised.
All ISO images are copyright of Rene Mayrhofer and eSYS Information Systems GmbH, but may be copied and distributed freely. Several components of Gibraltar are under GPL or BSD license. For detailed usage licenses read the packet documentations under /usr/share/doc on the ISO image.
If you would like to distribute Gibraltar commercially, please refer to our partner program.
Gibraltar can be completely configured with the web-based configuration tool GibADMIN. The configuration of Gibraltar occurs over an encoded, secured connection, and can be done with any browser. The web-interface is designed intuitional and concise, and enables the administrator to change the configuration very easy and quick.
Gibraltar convinces through jutting flexibility and extensive functionality.
Main features:
- SYSTEM
- Live CD technology: Gibraltar boots and runs fully off CD-ROM
- No hard disk installation required
- Specially hardened Linux kernel
- Languages: English, German, Finnish
- Remote configuration with web interface (SSL 128 Bit) or remote login (SSH)
- Easy configuration management
- Automatic live updates: interval can be configured
- NETWORK SUPPORT
- Ethernet: 10/100/1000 MBit/s: static or DHCP, virtual IP addresses
- ADSL Ethernet modems: PPP over Ethernet, PPTP
- ADSL USB modems: PPP over ATM
- Modem dial in: serial, USB
- Unlimited number of network interfaces
- STATEFUL PACKET INSPECTION
- Protocol support: ICMP, TCP, UDP, GRE, ESP, AH, IPv4-over-IPv6
- Flexible packet filter: interface, MAC address, IP address, service, port,....
- NAT: Network address translation: dynamic and static
- PAT: Port address translation: load balancing (Round Robin)
- Free definition of aliases and groups: addresses and ports
- DoS/flood - protection: predefined, expandable
- Randomized IP sequencing
- Selective TTL manipulation
- Protocol pass through: PPTP, FTP, H.323, IRC
- VPN (VIRTUAL PRIVATE NETWORKS)
- VPN IPSec gateway
- VPN PPTP server: MPPE 128 Bit data encryption
- Network-to-network VPN
- Network-to-client VPN: compatible with Microsoft Windows 2000 / XP
- Unlimited number of VPN tunnels
- Authentication with PSK (Private shared key) and X.509 certificates
- Encryption: 3DES, Blowfish, Twofish, AES, CAST, Serpent
- Authentication PPTP: CHAP, MS-CHAPv1, MS-CHAPv2
- NAT traversal
- Perfect forward secrecy (PFS)
- DEEP PACKET INSPECTION
- Secure SMTP relay: incoming, outgoing, attachment blocking, block lists, antivirus and spam protection
- Transparent HTTP proxy: no client configuration necessary, spam protection
- User authentication: user list, active directory integration, LDAP
- Content caching
- Content scanning: antivirus, cookies, active X, java script
- FTP proxy: transparent outgoing, incoming
- Transparent POP3 proxy: antivirus, spam protection and protection of dangerous attachments
- ADDITIONAL SERVICES
- Dynamic DNS
- DHCP server
- Secure DNS resolve
- SSL wrapper for arbitrary services
- Portscan detection
- Antispam filter: rule based, Bayes, RBL, Razor and DCC
- ClamAV virus scanner
- OPTIONAL: Kaspersky virus scanner
Download (235MB)
Added: 2006-08-30 License: GPL (GNU General Public License) Price: $350
1150 downloads
Bastille 3.0.9
Bastille Hardening program locks down an operating system. more>>
Bastille Hardening program "locks down" an operating system, proactively configuring the system for increased security and decreasing its susceptibility to compromise. Bastille project can also assess a systems current state of granularly, hardening reporting on each of the security settings with which it works.
Bastille currently supports the Red Hat (Fedora Core, Enterprise, and Numbered/Classic), SUSE, Debian, Gentoo, and Mandrake distributions, along with HP-UX and Mac OS X. Bastilles focuses on letting the systems user/administrator choose exactly how to harden the operating system.
In its default hardening mode, it interactively asks the user questions, explains the topics of those questions, and builds a policy based on the users answers. It then applies the policy to the system. In its assessment mode, it builds a report intended to teach the user about available security settings as well as inform the user as to which settings have been tightened.
Why use it?
Bastille broke new ground by working to educate users about security, and help them make balanced, informed choices. Many users have found Bastilles secondary goal of educational just as useful as its primary goal of system hardening, leading some organizations to make an interactive Bastille hardening session part of their training regimen for new system administrators. In this spirit, Bastille can allow the user to run through the entire interactive portion without applying the chosen changes.
Who Uses It?
Bastille has become a vital part of the security hardening space. Its the most used hardening tool for Linux and HP-UX and is shipped by the vendor on SuSE, Debian, Gentoo and HP-UX. It is covered in all of the major books on Linux Security and has been the subject of a number of articles. Most recently, the Center for Internet Securitys Linux Hardening Guide has recommended the use of Bastille to help harden systems.
Enhancements:
- Updated for Fedora Core 5, SUSE 10, Mandriva 10.0, 10.1, 2006*, and preliminary support for Tiger.
<<lessBastille currently supports the Red Hat (Fedora Core, Enterprise, and Numbered/Classic), SUSE, Debian, Gentoo, and Mandrake distributions, along with HP-UX and Mac OS X. Bastilles focuses on letting the systems user/administrator choose exactly how to harden the operating system.
In its default hardening mode, it interactively asks the user questions, explains the topics of those questions, and builds a policy based on the users answers. It then applies the policy to the system. In its assessment mode, it builds a report intended to teach the user about available security settings as well as inform the user as to which settings have been tightened.
Why use it?
Bastille broke new ground by working to educate users about security, and help them make balanced, informed choices. Many users have found Bastilles secondary goal of educational just as useful as its primary goal of system hardening, leading some organizations to make an interactive Bastille hardening session part of their training regimen for new system administrators. In this spirit, Bastille can allow the user to run through the entire interactive portion without applying the chosen changes.
Who Uses It?
Bastille has become a vital part of the security hardening space. Its the most used hardening tool for Linux and HP-UX and is shipped by the vendor on SuSE, Debian, Gentoo and HP-UX. It is covered in all of the major books on Linux Security and has been the subject of a number of articles. Most recently, the Center for Internet Securitys Linux Hardening Guide has recommended the use of Bastille to help harden systems.
Enhancements:
- Updated for Fedora Core 5, SUSE 10, Mandriva 10.0, 10.1, 2006*, and preliminary support for Tiger.
Download (0.33MB)
Added: 2006-12-05 License: GPL (GNU General Public License) Price:
1056 downloads
Rubix Linux 1.0
Rubix is a Linux distribution forked from Slackware Linux. more>>
Rubix is a Linux distribution forked from Slackware Linux.
It differs from its parent in that Rubix uses Arch Linuxs pacman for simplified package management with dependency resolution and it has a completely revamped init system, maintaining the BSD style, but adding modularity.
What is Rubix?
- It is a new Linux distribution that is something of a fork of Slackware 10.1.
- It will branch off in its own direction very quickly, in many ways, it already has.
- It maintains the Slackware traditions of Simplicity, Security and Stability.
- It will run on all i486 hardware and newer and is optimized for i686.
- It is designed to support mission critical hardware and be very admin friendly.
- It is a great distribution for knowledgable *NIX users!
- If you know Slackware, you will do great in Rubix!
How is Rubix different from Slackware?
- Rubix uses Arch Linuxs pacman for simplified package management with dependency resolution.
- Rubix has completely revamped the init system, maintaining the BSD style, but adding modularity.
- Rubix uses gcc 3.4.1 and compiles most packages with SSP (aka: ProPolice), and PIE (Position Independant Executable) wherever possible, but will never patch software just to make it compile with SSP andor PIE. This means that Rubix should not be thought of as a hardened distribution as many packages can not be compiled with SSP, however, it does mean that Rubix is harder than most. This logic makes most software more secure and does not require downstream patching for compatability, a major goal of Rubix.
Enhancements:
- This is the inaugural release of the Rubix Linux operating system. Rubix Linux is distributed with the Linux kernel versions 2.6.15.5, 2.4.32 and 2.4.32-grsec. Rubix Linux is well equipped to serve in both desktop and server roles. Rubix has exceptional hardware detection with udev replacing hotplug for 2.6 kernels and the latest KDE desktop version 3.5.1. Mozilla Firefox 1.5.0.1 and Thunderbird 1.5 are now the default web browser and email client. Rubix Linux also supports the best modern filesystems including ext2, ext3, JFS, XFS, ReiserFS and now Reiser4 (with 2.6 kernels) from installation.
<<lessIt differs from its parent in that Rubix uses Arch Linuxs pacman for simplified package management with dependency resolution and it has a completely revamped init system, maintaining the BSD style, but adding modularity.
What is Rubix?
- It is a new Linux distribution that is something of a fork of Slackware 10.1.
- It will branch off in its own direction very quickly, in many ways, it already has.
- It maintains the Slackware traditions of Simplicity, Security and Stability.
- It will run on all i486 hardware and newer and is optimized for i686.
- It is designed to support mission critical hardware and be very admin friendly.
- It is a great distribution for knowledgable *NIX users!
- If you know Slackware, you will do great in Rubix!
How is Rubix different from Slackware?
- Rubix uses Arch Linuxs pacman for simplified package management with dependency resolution.
- Rubix has completely revamped the init system, maintaining the BSD style, but adding modularity.
- Rubix uses gcc 3.4.1 and compiles most packages with SSP (aka: ProPolice), and PIE (Position Independant Executable) wherever possible, but will never patch software just to make it compile with SSP andor PIE. This means that Rubix should not be thought of as a hardened distribution as many packages can not be compiled with SSP, however, it does mean that Rubix is harder than most. This logic makes most software more secure and does not require downstream patching for compatability, a major goal of Rubix.
Enhancements:
- This is the inaugural release of the Rubix Linux operating system. Rubix Linux is distributed with the Linux kernel versions 2.6.15.5, 2.4.32 and 2.4.32-grsec. Rubix Linux is well equipped to serve in both desktop and server roles. Rubix has exceptional hardware detection with udev replacing hotplug for 2.6 kernels and the latest KDE desktop version 3.5.1. Mozilla Firefox 1.5.0.1 and Thunderbird 1.5 are now the default web browser and email client. Rubix Linux also supports the best modern filesystems including ext2, ext3, JFS, XFS, ReiserFS and now Reiser4 (with 2.6 kernels) from installation.
Download (404MB)
Added: 2006-03-06 License: GPL (GNU General Public License) Price:
1327 downloads
JaCL Linux 0.2005-07-11 beta1
JaCL Linux (Just a Command Line Linux) is a live CD distribution (a Knoppix remaster) of the Linux operating system. more>>
JaCL Linux (Just a Command Line Linux) is a live CD distribution (a Knoppix remaster) of the Linux operating system. JaCL Linux is designed to be run as a command line driven server or utility system.
Most major command line applications or server software available in a standard Linux distribution are available in JaCL Linux. Most X11 server software and applications have been intentionally removed from the distribution in order to streamline the
distribution for use as a server or utility system.
Examples of server or utility uses for JaCL include: web server, ftp server, DNS server, SMB server, rsync server, syslog server, local disk mirroring utility, remote rsync disk mirroring utility or hardware diagnostics utility.
The removal of the X server and X applications streamlines the distribution, reduces maintenance, and may reduce the risk of vulnerabilities.
Additionally other applications have been intentionally removed or omitted from the distribution, including applications which may pose a security risk if the server is user level compromised (i.e. network scanning utilities and packet sniffing tools).
The result is a full command line live CD distribution which is about half the size of a full Knoppix CD distribution.
Main features:
- an easily upgradable system
- a password protected system by default
- security warning banners (a requirement in some work environments)
- a security hardened base system
- an easy mechanism for systems administrators to automatically configure the system at bootup
- most server and utility applications included (the fact that Knoppix<<less
Most major command line applications or server software available in a standard Linux distribution are available in JaCL Linux. Most X11 server software and applications have been intentionally removed from the distribution in order to streamline the
distribution for use as a server or utility system.
Examples of server or utility uses for JaCL include: web server, ftp server, DNS server, SMB server, rsync server, syslog server, local disk mirroring utility, remote rsync disk mirroring utility or hardware diagnostics utility.
The removal of the X server and X applications streamlines the distribution, reduces maintenance, and may reduce the risk of vulnerabilities.
Additionally other applications have been intentionally removed or omitted from the distribution, including applications which may pose a security risk if the server is user level compromised (i.e. network scanning utilities and packet sniffing tools).
The result is a full command line live CD distribution which is about half the size of a full Knoppix CD distribution.
Main features:
- an easily upgradable system
- a password protected system by default
- security warning banners (a requirement in some work environments)
- a security hardened base system
- an easy mechanism for systems administrators to automatically configure the system at bootup
- most server and utility applications included (the fact that Knoppix<<less
Download (325MB)
Added: 2005-08-30 License: GPL (GNU General Public License) Price:
1516 downloads
Secleted [ 0 ] software to compare
- Page: 1 of 2
- 1
- 2
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above hardened search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
