netbios auditing tool
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 326
Linux Security Auditing Tool 0.9.6
Linux Security Auditing Tool (LSAT) is a post install security auditing tool. more>>
The Linux Security Auditing Tool (LSAT) is a post install security auditor for Linux/Unix.
Linux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
<<lessLinux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
Download (0.070MB)
Added: 2007-05-21 License: GPL (GNU General Public License) Price:
904 downloads
Network Security Analysis Tool 1.5
Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services. more>>
Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services and check for versions, security problems, gather information about the servers and the machine, and much more.
A manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.
New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.
Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net
Currently, these are lists of vulnerabilities:
nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)
<<lessA manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.
New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.
Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net
Currently, these are lists of vulnerabilities:
nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)
Download (0.40MB)
Added: 2006-07-14 License: GPL (GNU General Public License) Price:
1204 downloads
Network Device Change Control 3.10
Network Device Change Control (NDCC) is a system that monitors and records changes to the configurations of network equipment. more>>
Network Device Change Control (NDCC) is a system that monitors and records changes to the configurations of network equipment.
Network Device Change Control can store configuration snapshots for any text-based configs. It has been used to store configurations from Unix and Linux systems, Cisco routers, switches, load balancers, and firewalls, Foundry, NetScreen, Juniper, NetScaler, and others.
It only took a while to realize that router changes should be tracked. I rewrote the system to give a current and once-back system of configurations. Since I was using diff, I decided to leave the diff information in the system. Those diffs were emailed to a group so everyone knew when something was changed, along with what was changed.
Some time later, a bank needed to track configuration files, and the system was upgraded for use within a database. The first implementation was using perl as a CGI script against a PostgreSQL database. The company wanted many changes made for their auditing needs and most of those changes enhanced NDCC. Upgrades to their environment moved things to PHP and MySQL, and the system was rewritten for that environment and the old perl code has since been lost.
<<lessNetwork Device Change Control can store configuration snapshots for any text-based configs. It has been used to store configurations from Unix and Linux systems, Cisco routers, switches, load balancers, and firewalls, Foundry, NetScreen, Juniper, NetScaler, and others.
It only took a while to realize that router changes should be tracked. I rewrote the system to give a current and once-back system of configurations. Since I was using diff, I decided to leave the diff information in the system. Those diffs were emailed to a group so everyone knew when something was changed, along with what was changed.
Some time later, a bank needed to track configuration files, and the system was upgraded for use within a database. The first implementation was using perl as a CGI script against a PostgreSQL database. The company wanted many changes made for their auditing needs and most of those changes enhanced NDCC. Upgrades to their environment moved things to PHP and MySQL, and the system was rewritten for that environment and the old perl code has since been lost.
Download (0.046MB)
Added: 2006-08-09 License: GPL (GNU General Public License) Price:
1177 downloads
Spike PHP Security Audit Tool 0.23
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits. more>>
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits.
Usage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
<<lessUsage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
Download (0.018MB)
Added: 2006-08-01 License: Open Software License Price:
1192 downloads
Qmail Auditor 0.4
Qmail Auditor consists of a email auditing tool. more>>
Qmail Auditor consists of a email auditing tool.
QMail Auditor provides simple a method for auditing emails. It is easy to configure and uses regular expressions as rules.
The format of audit file is :
Any e-mail (outbound or inbound) have passed at this filter.
The valids "field header"(s) :
all - field from or to of e-mails
to - field to
from - field from
In case of regular expression you read the
# man re_format
# man regex
E-mail to forward is a valid mail account to redirect.
Example of this :
from nelio@walk.* auditoria@spyware.walk.com.br
to nelio@spyware.* auditoria@spyware.walk.com.br
Enhancements:
- Now the config file name has renamed.
- From audit (in /var/qmail/control for /var/qmail/control/auditor) and qmail-queue-real-audit for qmail-queue-real-auditor.
<<lessQMail Auditor provides simple a method for auditing emails. It is easy to configure and uses regular expressions as rules.
The format of audit file is :
Any e-mail (outbound or inbound) have passed at this filter.
The valids "field header"(s) :
all - field from or to of e-mails
to - field to
from - field from
In case of regular expression you read the
# man re_format
# man regex
E-mail to forward is a valid mail account to redirect.
Example of this :
from nelio@walk.* auditoria@spyware.walk.com.br
to nelio@spyware.* auditoria@spyware.walk.com.br
Enhancements:
- Now the config file name has renamed.
- From audit (in /var/qmail/control for /var/qmail/control/auditor) and qmail-queue-real-audit for qmail-queue-real-auditor.
Download (0.16MB)
Added: 2007-01-22 License: BSD License Price:
1010 downloads
SMBD Audit 0.2 RC1
SMBD Audit application is a set of VFS audit module for Samba 3 and web frontend to view and search samba audit logs. more>>
SMBD Audit application is a set of VFS audit module for Samba 3 and web frontend to view and search samba audit logs.
Module stores logs directly into MySQL database with libmysqlclient.
You can search database by Login, Address, Share, Action, Log Message(specify filename or directory name), From and To Date.
Here is a very short list of what SMBD Audit package includes, and what it does.
- a VFS audit module, to provide logging to MySQL database
- a web front end to view and search logs.
<<lessModule stores logs directly into MySQL database with libmysqlclient.
You can search database by Login, Address, Share, Action, Log Message(specify filename or directory name), From and To Date.
Here is a very short list of what SMBD Audit package includes, and what it does.
- a VFS audit module, to provide logging to MySQL database
- a web front end to view and search logs.
Download (0.35MB)
Added: 2006-01-26 License: GPL (GNU General Public License) Price:
1374 downloads
Netio 1.26
Netio project is a network benchmark. more>>
Netio project is a network benchmark.
Netio measures the net throughput of a network via TCP/IP (and NetBIOS on Windows and OS/2) using various different packet sizes.
One instance has to run on one machine as a server process, another instance is used on another machine to perform the benchmark. When executed without arguments, the program will explain its usage.
Full source code is included. For compilation, IBM VisualAge C++ for OS/2 or Windows is required, gcc can be used under Unix. Starting with version 1.17, gcc (MinGW) can be used for Windows alternatively.
Starting with version 1.20, multi threading support is required. Under Unix this has to be pthreads (tested with Linux). Therefore, DOS is no longer supported beginning with version 1.20.
A few executable files are included. The author can only build for OS/2, Windows NT/2000 and Linux. The other executable files (if any) are contributions from other people who ported the benchmark to their platform. However, those executables may be out of date now (based on earlier versions). Especially, executables of version 1.16 and newer will not communicate with versions below 1.16.
<<lessNetio measures the net throughput of a network via TCP/IP (and NetBIOS on Windows and OS/2) using various different packet sizes.
One instance has to run on one machine as a server process, another instance is used on another machine to perform the benchmark. When executed without arguments, the program will explain its usage.
Full source code is included. For compilation, IBM VisualAge C++ for OS/2 or Windows is required, gcc can be used under Unix. Starting with version 1.17, gcc (MinGW) can be used for Windows alternatively.
Starting with version 1.20, multi threading support is required. Under Unix this has to be pthreads (tested with Linux). Therefore, DOS is no longer supported beginning with version 1.20.
A few executable files are included. The author can only build for OS/2, Windows NT/2000 and Linux. The other executable files (if any) are contributions from other people who ported the benchmark to their platform. However, those executables may be out of date now (based on earlier versions). Especially, executables of version 1.16 and newer will not communicate with versions below 1.16.
Download (0.13MB)
Added: 2007-02-21 License: Free for non-commercial use Price:
976 downloads
Samba netbios forwarder 0.39
NBFW is a smb forwarder. more>>
NBFW is a smb forwarder. With the Samba NetBIOS forwarder, nbfw, you can browse the local windows network transparently to and from your masqueraded network.
This will most likely be of use for people who have Windows machines on a backend network who want to browse the Network Neighbourhood on the normal network though their masquarading firewall.
If your Samba is not working ok, NBfW will not work, too. NBfW can cause major problems if you dont configure it correctly. And it has ... It really helps to know what youre doing.
<<lessThis will most likely be of use for people who have Windows machines on a backend network who want to browse the Network Neighbourhood on the normal network though their masquarading firewall.
If your Samba is not working ok, NBfW will not work, too. NBfW can cause major problems if you dont configure it correctly. And it has ... It really helps to know what youre doing.
Download (0.062MB)
Added: 2006-07-05 License: GPL (GNU General Public License) Price:
1210 downloads
glibc-audit 2.4-4
glibc-audit is a modified version of glibc for application developers who check their code with an automatic memory access check more>>
glibc-audit is a modified version of glibc for application developers who check their code with an automatic memory access checker such as valgrind, Insure++, or Purify.
glibc-audit has been audited and cleaned up so that reports from the developers use of a memory access checker are more likely to be interesting to the developer, with less "noise" from the C library itself. Typically, glibc-audit initializes all of its local variables and structs before use. Ordinary glibc uses uninitialized dummy variables that are "dont-care" to its logic but reported by the memory access checker.
Also, the r_debug.r_brk protocol has been enhanced to co-operate with a co-resident auditor. If the auditor sets .r_brk, then the runtime loader will call the auditor directly whenever a shared library event occurs.
This is much more convenient than using breakpoints. By default the old breakpoint protocol works just like before. The new protocol is binary compatible with the old on machines where a pointer to a function is the same size as an ordinary pointer. Platforms where a pointer to a function is larger (such as HP-PA RISC, Alpha processor, or PowerPC) are not binary backward compatible, and will have to increment r_debug.r_version. Exising clients (such as gdb) also will see an ignorable type mismatch error when they are built. But for now, it is worth more not to antagonize gdb at runtime on x86.
The patch modifies 91 files. Compared to glibc-2.3.2-27.9, the additional code occupies 18 more bytes of .text, and 24 fewer bytes in the .so. On a nano-scopic scale, the typical execution cost is 0 to 3 CPU cycles per affected routine; the estimated median total impact is less than 1 second per machine per day. In the case of *printf(), glibc-audit is faster than glibc because the cleaned-up source helps gcc-3.2 avoid generating atrocious code when initializing printf_spec.info for parse_one_spec() in stdio-common/printf-parse.h.
Glibc-audit was constructed by running a memory access checker on the internal testcases of glibc, then analyzing the reported errors and modifying the source. The process revealed 10 memory access bugs in glibc-2.3.2-11.9. Seven were fixed in glibc-2.3.2-27.9, two more have been fixed in CVS, and one is a design flaw that probably will not be fixed.
Predecessor patches to glibc-audit-1 were submitted to the glibc project, but those patches were ignored [user "guest", password "guest"], declined, or rejected. There is enough improvement in usability and reliability to publish glibc-audit-1 separately.
The unmodified glibc-2.3.2-27.9.src.rpm is available from RedHat mirrors. rpmbuild -ba --target i686 took about 4 hours and 2.5GB of disk space on a machine with 1.1GHz CPU, 384MB RAM, UDMA100 disk.
Enhancements:
- The patches were updated to glibc-2.4-4.
- A glibc bug that interfered with gdb stop-on-solib-events was fixed.
- On x86, x86-64, and PowerPC, the __NR_open system call was improved to avoid leaking information from the user to the kernel.
<<lessglibc-audit has been audited and cleaned up so that reports from the developers use of a memory access checker are more likely to be interesting to the developer, with less "noise" from the C library itself. Typically, glibc-audit initializes all of its local variables and structs before use. Ordinary glibc uses uninitialized dummy variables that are "dont-care" to its logic but reported by the memory access checker.
Also, the r_debug.r_brk protocol has been enhanced to co-operate with a co-resident auditor. If the auditor sets .r_brk, then the runtime loader will call the auditor directly whenever a shared library event occurs.
This is much more convenient than using breakpoints. By default the old breakpoint protocol works just like before. The new protocol is binary compatible with the old on machines where a pointer to a function is the same size as an ordinary pointer. Platforms where a pointer to a function is larger (such as HP-PA RISC, Alpha processor, or PowerPC) are not binary backward compatible, and will have to increment r_debug.r_version. Exising clients (such as gdb) also will see an ignorable type mismatch error when they are built. But for now, it is worth more not to antagonize gdb at runtime on x86.
The patch modifies 91 files. Compared to glibc-2.3.2-27.9, the additional code occupies 18 more bytes of .text, and 24 fewer bytes in the .so. On a nano-scopic scale, the typical execution cost is 0 to 3 CPU cycles per affected routine; the estimated median total impact is less than 1 second per machine per day. In the case of *printf(), glibc-audit is faster than glibc because the cleaned-up source helps gcc-3.2 avoid generating atrocious code when initializing printf_spec.info for parse_one_spec() in stdio-common/printf-parse.h.
Glibc-audit was constructed by running a memory access checker on the internal testcases of glibc, then analyzing the reported errors and modifying the source. The process revealed 10 memory access bugs in glibc-2.3.2-11.9. Seven were fixed in glibc-2.3.2-27.9, two more have been fixed in CVS, and one is a design flaw that probably will not be fixed.
Predecessor patches to glibc-audit-1 were submitted to the glibc project, but those patches were ignored [user "guest", password "guest"], declined, or rejected. There is enough improvement in usability and reliability to publish glibc-audit-1 separately.
The unmodified glibc-2.3.2-27.9.src.rpm is available from RedHat mirrors. rpmbuild -ba --target i686 took about 4 hours and 2.5GB of disk space on a machine with 1.1GHz CPU, 384MB RAM, UDMA100 disk.
Enhancements:
- The patches were updated to glibc-2.4-4.
- A glibc bug that interfered with gdb stop-on-solib-events was fixed.
- On x86, x86-64, and PowerPC, the __NR_open system call was improved to avoid leaking information from the user to the kernel.
Download (4.2MB)
Added: 2006-03-29 License: LGPL (GNU Lesser General Public License) Price:
1315 downloads
System Local Audit Daemon 2.0
SLAD is a tool for performing local security checks against GNU/Linux systems. more>>
SLAD is a tool for performing local security checks against GNU/Linux systems.
SLAD has been primarily developed for the BOSS project to work together with Nessus to enhance its local scanning capabilities. For example, scanning for weak passwords with a tool like John-the-Ripper is something that simply cannot be achieved by a network scan.
Therefore, SLAD is required to be installed on every GNU/Linux system where local auditing needs to be done. SLAD can then be used as a stand-alone application or more conveniently through Nessus. For usage with Nessus two NASL plugins are provided for interfacing between Nessus and SLAD
The Version 2.0 provides a XML Interface for Parameters and easy integration of additional audit-parameters and tools. To help the administrator to integrate a new feature-set, a development-documentation is provided with the cvs.
SLAD has been tested and verified on the following platforms:
RedHat Fedora Core 3
SuSe 9.2
Debian 3.0 (woody)
Debian 3.1 (sarge)
ERPOSS3
Gentoo Linux 2004.3
SLAD is implemented in Perl and provides an extendable plugin architecture allowing to use various GPL-based security scanners and auditing tools under one common framework. Currently, SLAD comes packaged with
John-the-Ripper
Chkrootkit
LSOF
ClamAV
Tripwire
TIGER
As a result SLAD delivers reports of these locally installed auditing and analysis tools. When used with Nessus the individual reports are wrapped into a standard Nessus report.
SLAD as well as the SLAD NASL Plugins can be downloaded from this Website in their current stable release V2.0.
Installation:
You can use our "easy-to-use" GTK installer, this installer downloads the lastest SLAD Release Binary, and install it on the target system. You only need to provide the login for the traget system.
<<lessSLAD has been primarily developed for the BOSS project to work together with Nessus to enhance its local scanning capabilities. For example, scanning for weak passwords with a tool like John-the-Ripper is something that simply cannot be achieved by a network scan.
Therefore, SLAD is required to be installed on every GNU/Linux system where local auditing needs to be done. SLAD can then be used as a stand-alone application or more conveniently through Nessus. For usage with Nessus two NASL plugins are provided for interfacing between Nessus and SLAD
The Version 2.0 provides a XML Interface for Parameters and easy integration of additional audit-parameters and tools. To help the administrator to integrate a new feature-set, a development-documentation is provided with the cvs.
SLAD has been tested and verified on the following platforms:
RedHat Fedora Core 3
SuSe 9.2
Debian 3.0 (woody)
Debian 3.1 (sarge)
ERPOSS3
Gentoo Linux 2004.3
SLAD is implemented in Perl and provides an extendable plugin architecture allowing to use various GPL-based security scanners and auditing tools under one common framework. Currently, SLAD comes packaged with
John-the-Ripper
Chkrootkit
LSOF
ClamAV
Tripwire
TIGER
As a result SLAD delivers reports of these locally installed auditing and analysis tools. When used with Nessus the individual reports are wrapped into a standard Nessus report.
SLAD as well as the SLAD NASL Plugins can be downloaded from this Website in their current stable release V2.0.
Installation:
You can use our "easy-to-use" GTK installer, this installer downloads the lastest SLAD Release Binary, and install it on the target system. You only need to provide the login for the traget system.
Download (0.016MB)
Added: 2006-01-16 License: GPL (GNU General Public License) Price:
1380 downloads
audit daemon 1.5.6
audit package contains the user-space utilities for creating audit rules. more>>
audit package contains the user-space utilities for creating audit rules. As well as for storing and searching the audit records generate by the audit subsystem in the Linux 2.6 kernel.
Usage:
Examples usage of utilities:
General:
Window 1:
./auditd
Window 2 (you dont have to have the daemon running to try this, but
enabled has to be 1):
./auditctl -s
./auditctl -a entry,always -S open
ls
./auditctl -d entry,always -S open
Identity tracking:
./auditctl -a exit,always -S all -F loginuid=2000
./auditctl -L 2000,"test uid"
Enhancements:
- Updates were made to system-config-audit. auditctl was updated to better handle watching of directories with older kernels.
- Memory leaks and an invalid free in auditd were fixed along with interpretations in auparse.
<<lessUsage:
Examples usage of utilities:
General:
Window 1:
./auditd
Window 2 (you dont have to have the daemon running to try this, but
enabled has to be 1):
./auditctl -s
./auditctl -a entry,always -S open
ls
./auditctl -d entry,always -S open
Identity tracking:
./auditctl -a exit,always -S all -F loginuid=2000
./auditctl -L 2000,"test uid"
Enhancements:
- Updates were made to system-config-audit. auditctl was updated to better handle watching of directories with older kernels.
- Memory leaks and an invalid free in auditd were fixed along with interpretations in auparse.
Download (0.29MB)
Added: 2007-07-26 License: GPL (GNU General Public License) Price:
824 downloads
nmbscan 1.2.4
NMB Scanner scans the shares of a NetBIOS/SMB network, using the NMB/SMB/NetBIOS protocols. more>>
NMB Scanner scans the shares of a NetBIOS/SMB network, using the NMB/SMB/NetBIOS protocols. It is useful for acquiring information on a local area network for such purposes as security auditing.
It can obtain such information as NMB/SMB/NetBIOS/Windows hostname, IP address, IP hostname, ethernet MAC address, Windows username, NMB/SMB/NetBIOS/Windows domain name, and master browser.
It can discover all the NMB/SMB/NetBIOS/Windows hosts from a LAN by using the hosts lists maintained by master browsers.
<<lessIt can obtain such information as NMB/SMB/NetBIOS/Windows hostname, IP address, IP hostname, ethernet MAC address, Windows username, NMB/SMB/NetBIOS/Windows domain name, and master browser.
It can discover all the NMB/SMB/NetBIOS/Windows hosts from a LAN by using the hosts lists maintained by master browsers.
Download (0.011MB)
Added: 2006-07-04 License: GPL (GNU General Public License) Price:
1214 downloads
Netdisco 0.95
Netdisco is an Open Source web-based network management tool. more>>
Netdisco is an Open Source web-based network management tool.
Designed for moderate to large networks, configuration information and connection data for network devices are retrieved by SNMP. With Netdisco you can locate the switch port of an end-user system by IP or MAC address. Data is stored using a SQL database for scalability and speed.
Cisco Discovery Protocol (CDP) optionally provides automatic discovery of the network topology. The network is inventoried by both device model and operating system (like IOS). Netdisco uses router ARP tables and L2 switch MAC forwarding tables to locate nodes on physical ports and track them by their IP addresses.
For each node, a time stamped history of the ports it has visited and the IP addresses it has used is maintained. Netdisco gets all its data, including CDP topology information, with SNMP polls and DNS queries. It does not use CLI access and has no need for privilege passwords. Security features include a wire-side Wireless Access Point (AP) locator.
Main features:
Switch Ports
- Central location to disable/enable switch ports.
- Network administrators can disable and enable ports without having to know enable or privilege passwords. Reasons for switching on/off ports are logged for end-of-the-year auditing and reporting. Non-IOS savvy managers can control port access from a familiar browser interface. This feature was designed with a University Residential Networks (ResNet) in mind.
- Only users you specify in Netdisco will have access to switch off a port. Netdisco will also not allow people to switch off uplink ports by accident.
- MAC Address to switch port resolution.
- IP Address to switch port resolution.
- Find Switch Ports with multiple nodes attached
- Find nodes using multiple IP addresses
- Find nodes by vendor (using MAC address OUI)
Easy Administration
- Navigation through a Web Interface. Maintenance through a Command Line Interface (CLI).
- Database store for scalability and speed (Postgresql).
- Easily extendible to new network device types and vendors.
- Built-in user system to restrict access to sensitive data and features.
Network Administration and Security
- Administratively enable/disable switch ports from web interface with logging.
- Automatic inventory and search of network hardware.
- Duplex Mismatch Finder for uplink ports.
- Find rouge Wireless Access Points (APs) from the wired-side of network.
- Layer-Two Traceroute
Reporting
- Netdisco creates a clickable graph/map of your network topology.
- Get statistics of the number of actual nodes connected to network and their address-space usage.
- Optional integration with a Pinnacle Database.
- Inventory of Network Devices:
- by Operating System (IOS,CatOS,HP...)
- by Model, Vendor, OSI Layer, DNS Name
- Find devices using IP Addresses without DNS entries.
Enhancements:
- This is a major release with many enhancements, including Apache2 support, per-port VLAN control on some devices, wireless network SSID inventory, significantly-expanded device support with support of SNMP::Info, and many bugfixes.
<<lessDesigned for moderate to large networks, configuration information and connection data for network devices are retrieved by SNMP. With Netdisco you can locate the switch port of an end-user system by IP or MAC address. Data is stored using a SQL database for scalability and speed.
Cisco Discovery Protocol (CDP) optionally provides automatic discovery of the network topology. The network is inventoried by both device model and operating system (like IOS). Netdisco uses router ARP tables and L2 switch MAC forwarding tables to locate nodes on physical ports and track them by their IP addresses.
For each node, a time stamped history of the ports it has visited and the IP addresses it has used is maintained. Netdisco gets all its data, including CDP topology information, with SNMP polls and DNS queries. It does not use CLI access and has no need for privilege passwords. Security features include a wire-side Wireless Access Point (AP) locator.
Main features:
Switch Ports
- Central location to disable/enable switch ports.
- Network administrators can disable and enable ports without having to know enable or privilege passwords. Reasons for switching on/off ports are logged for end-of-the-year auditing and reporting. Non-IOS savvy managers can control port access from a familiar browser interface. This feature was designed with a University Residential Networks (ResNet) in mind.
- Only users you specify in Netdisco will have access to switch off a port. Netdisco will also not allow people to switch off uplink ports by accident.
- MAC Address to switch port resolution.
- IP Address to switch port resolution.
- Find Switch Ports with multiple nodes attached
- Find nodes using multiple IP addresses
- Find nodes by vendor (using MAC address OUI)
Easy Administration
- Navigation through a Web Interface. Maintenance through a Command Line Interface (CLI).
- Database store for scalability and speed (Postgresql).
- Easily extendible to new network device types and vendors.
- Built-in user system to restrict access to sensitive data and features.
Network Administration and Security
- Administratively enable/disable switch ports from web interface with logging.
- Automatic inventory and search of network hardware.
- Duplex Mismatch Finder for uplink ports.
- Find rouge Wireless Access Points (APs) from the wired-side of network.
- Layer-Two Traceroute
Reporting
- Netdisco creates a clickable graph/map of your network topology.
- Get statistics of the number of actual nodes connected to network and their address-space usage.
- Optional integration with a Pinnacle Database.
- Inventory of Network Devices:
- by Operating System (IOS,CatOS,HP...)
- by Model, Vendor, OSI Layer, DNS Name
- Find devices using IP Addresses without DNS entries.
Enhancements:
- This is a major release with many enhancements, including Apache2 support, per-port VLAN control on some devices, wireless network SSID inventory, significantly-expanded device support with support of SNMP::Info, and many bugfixes.
Download (0.33MB)
Added: 2006-11-30 License: BSD License Price:
1064 downloads
Auditor Security Linux 200605
The Auditor Security Linux is a live CD based on Knoppix. more>>
The Auditor security collection is a Live-System based on KNOPPIX. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes.
Independent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier. Even during the planning and development stages, our target was to achieve an excellent user-friendliness combined with an optimal toolset.
Professional open-source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking).
By this means, you instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly developed or converted from other system platforms, in order to make as many current auditing tools available as possible on one CD-ROM.
Tools like Wellenreiter and Kismet were equipped with an automatic hardware identification, thus avoiding irritating and annoying configuration of the wireless cards.
Enhancements:
New & Updated tools:
- proxychains 1-8-1 (for example scanning over proxy more easy)
- yersinia-0.5.4
- kismet-logfile-viewer klv.pl and klc.pl
- ntp fingerprinting tool
- tftp bruteforce tool
- snmp fuzzer
- cisco torch 0.4b
- unicornscan 0.4.2
- packit
- sendip
- nasl 2.2.4
- tcpick
- cryptcat
- amap version 4.8
- tcpsplit
- Ethereal version 10.11
- ettercap-ng-0.72 and modified the etter.conf
- replaced tinysnmp with snmp tools
- vnc2swf /usr/X11R6/bin/recordwin and vnc2swf
- edit_vnc2swf.py
- edit_mp3.py
- wpa-supplicatiant 0.3.8
- hostapd-utils 0.3.7
- ssldump
- fragrouter
- Metasploit 2.4 including all known updates
- airsnarf, but no menu at moment
- fakeap to /opt/auditor but no menu entry at moment, need to write a shell script
- dsniff 2.4b1-10
- nessus plugins updated
- exploit tree updated
- Snort 2.3.2-5
- Bleeding-edge rules for snort
- New aircrack
- New airsnort
- Bet i forgot some to mention.
New & updated drivers:
- rt2400 linux drivers and utils (untested)
- rtl8180 driver (8180_26_private.ko and open8180.ko and /usr/local/bin/wlanup and /usr/local/bin/wlandown) (Untested)
- hostap drivers 0.3.7
- ipw2100 & ipw2200 incl firmware, incl monitor mode
- Prism54 with injection patch
- Linux-wlan-ng with injection patch
- Madwifi with injection patch
- ACX drivers are back on cd
Addons:
- Default password list has been updated
- Added some changes to the network stack using /etc/sysctl.conf, which will be called from knoppix-autoconfig script
- New background image
Some fixes i remember:
- Kernel completely rebuilded to provide full functionality
- Isolinux now accepts bootparameters again
- USB drivers are back to /dev/sda and booting from stick works fine
- grub files have been fixed
- fixed hostname /etc/hosts
- /cdrom/index.html pointed to the old forum fixed that
- Added cardctl eject, cardctl insert into switch-to-XY scripts
- Fixed the homebutton of the konquerror when clicked first time
- Fixed the menuentry for nessus
<<lessIndependent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier. Even during the planning and development stages, our target was to achieve an excellent user-friendliness combined with an optimal toolset.
Professional open-source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking).
By this means, you instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly developed or converted from other system platforms, in order to make as many current auditing tools available as possible on one CD-ROM.
Tools like Wellenreiter and Kismet were equipped with an automatic hardware identification, thus avoiding irritating and annoying configuration of the wireless cards.
Enhancements:
New & Updated tools:
- proxychains 1-8-1 (for example scanning over proxy more easy)
- yersinia-0.5.4
- kismet-logfile-viewer klv.pl and klc.pl
- ntp fingerprinting tool
- tftp bruteforce tool
- snmp fuzzer
- cisco torch 0.4b
- unicornscan 0.4.2
- packit
- sendip
- nasl 2.2.4
- tcpick
- cryptcat
- amap version 4.8
- tcpsplit
- Ethereal version 10.11
- ettercap-ng-0.72 and modified the etter.conf
- replaced tinysnmp with snmp tools
- vnc2swf /usr/X11R6/bin/recordwin and vnc2swf
- edit_vnc2swf.py
- edit_mp3.py
- wpa-supplicatiant 0.3.8
- hostapd-utils 0.3.7
- ssldump
- fragrouter
- Metasploit 2.4 including all known updates
- airsnarf, but no menu at moment
- fakeap to /opt/auditor but no menu entry at moment, need to write a shell script
- dsniff 2.4b1-10
- nessus plugins updated
- exploit tree updated
- Snort 2.3.2-5
- Bleeding-edge rules for snort
- New aircrack
- New airsnort
- Bet i forgot some to mention.
New & updated drivers:
- rt2400 linux drivers and utils (untested)
- rtl8180 driver (8180_26_private.ko and open8180.ko and /usr/local/bin/wlanup and /usr/local/bin/wlandown) (Untested)
- hostap drivers 0.3.7
- ipw2100 & ipw2200 incl firmware, incl monitor mode
- Prism54 with injection patch
- Linux-wlan-ng with injection patch
- Madwifi with injection patch
- ACX drivers are back on cd
Addons:
- Default password list has been updated
- Added some changes to the network stack using /etc/sysctl.conf, which will be called from knoppix-autoconfig script
- New background image
Some fixes i remember:
- Kernel completely rebuilded to provide full functionality
- Isolinux now accepts bootparameters again
- USB drivers are back to /dev/sda and booting from stick works fine
- grub files have been fixed
- fixed hostname /etc/hosts
- /cdrom/index.html pointed to the old forum fixed that
- Added cardctl eject, cardctl insert into switch-to-XY scripts
- Fixed the homebutton of the konquerror when clicked first time
- Fixed the menuentry for nessus
Download (645MB)
Added: 2005-06-22 License: GPL (GNU General Public License) Price:
1131 downloads
NeWBIE LiveCD 0.2
NeWBIE LiveCD is a NetBSD based distro geared towards the desktop user. more>>
NeWBIE LiveCD is a NetBSD based distro geared towards the desktop user.
It includes software for Web browsing, chatting, multimedia, and document editing.
This acronym NeWBIE is pronounced just like the word "newbie" and stands for (Ne)tBSD (W)are (B)urned (I)n (E)conomy.
Newbie is a NetBSD (v. 3.0) live CD similar in spirit to the well-known FreeSBIE live CD. Newbie currently caters to the desktop-user (i.e. with applications for web browsing, chat, multimedia, document editing, etc) but will also serve as a core for creating a NetBSD version of Arudius (see below) - a network security auditing tool.
Why based on NetBSD? Because contrary to the popular opinion, NetBSD is not some obscure *BSD flavor that is only good for powering your toaster, but is a powerful, flexible and highly portable operating system.
In many aspects it is better than its more famous cousins. Did you know that NetBSD recently broke the speed record for network data transfer? And what about speed and scalability?
Enhancements:
- This release cleans up the boot process and adds a GUI tool for easy setup of the modem/DSL connection.
- More productivity tools are included (e.g. a file manager, spreadsheet, Samba, wireless AP detection, sniffer, network analysis, etc.).
<<lessIt includes software for Web browsing, chatting, multimedia, and document editing.
This acronym NeWBIE is pronounced just like the word "newbie" and stands for (Ne)tBSD (W)are (B)urned (I)n (E)conomy.
Newbie is a NetBSD (v. 3.0) live CD similar in spirit to the well-known FreeSBIE live CD. Newbie currently caters to the desktop-user (i.e. with applications for web browsing, chat, multimedia, document editing, etc) but will also serve as a core for creating a NetBSD version of Arudius (see below) - a network security auditing tool.
Why based on NetBSD? Because contrary to the popular opinion, NetBSD is not some obscure *BSD flavor that is only good for powering your toaster, but is a powerful, flexible and highly portable operating system.
In many aspects it is better than its more famous cousins. Did you know that NetBSD recently broke the speed record for network data transfer? And what about speed and scalability?
Enhancements:
- This release cleans up the boot process and adds a GUI tool for easy setup of the modem/DSL connection.
- More productivity tools are included (e.g. a file manager, spreadsheet, Samba, wireless AP detection, sniffer, network analysis, etc.).
Download (244MB)
Added: 2006-02-07 License: BSD License Price:
1358 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above netbios auditing tool search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
