Free premium auditor software for linux

Domain Auditor project was written to audit and track accounts within a domain. This tool uses LDAP queries to a definable Active Directory server to find various definable classes of accounts.
Initially it will operate interactively, but capabilities may be added in the future to automate functions (i.e. generate reports on a scheduled basis). The installation script handles most installation chores, so setup is very straightforward.
The tool is beta status at this time, but is in being used to generate SOX reports for my employer.
Main features:
- Reports - This function will display a list of defined reports, when invoked it will generate a list of accounts from AD (via LDAP queries) the results returned will depend on what you have defined for the filter for any particular report class under Sysadmin
- Sys Admin - This function will allow you to changes the system settings for LDAP server and port, base DN, Bind DN, username and password, and the database settings (mySQL only at this time). You may also add the report class definitions and their matching LDAP filters within this module
- User Admin - This screen is used to define users for the system and their rights. Usernames are used as the primary value, and entered values are validated via LDAP queries
- Audit Logs - The system logs all changes to the information stored and this page will allow you to review the data from these logs

glibc-audit is a modified version of glibc for application developers who check their code with an automatic memory access checker such as valgrind, Insure++, or Purify.
glibc-audit has been audited and cleaned up so that reports from the developers use of a memory access checker are more likely to be interesting to the developer, with less "noise" from the C library itself. Typically, glibc-audit initializes all of its local variables and structs before use. Ordinary glibc uses uninitialized dummy variables that are "dont-care" to its logic but reported by the memory access checker.
Also, the r_debug.r_brk protocol has been enhanced to co-operate with a co-resident auditor. If the auditor sets .r_brk, then the runtime loader will call the auditor directly whenever a shared library event occurs.
This is much more convenient than using breakpoints. By default the old breakpoint protocol works just like before. The new protocol is binary compatible with the old on machines where a pointer to a function is the same size as an ordinary pointer. Platforms where a pointer to a function is larger (such as HP-PA RISC, Alpha processor, or PowerPC) are not binary backward compatible, and will have to increment r_debug.r_version. Exising clients (such as gdb) also will see an ignorable type mismatch error when they are built. But for now, it is worth more not to antagonize gdb at runtime on x86.
The patch modifies 91 files. Compared to glibc-2.3.2-27.9, the additional code occupies 18 more bytes of .text, and 24 fewer bytes in the .so. On a nano-scopic scale, the typical execution cost is 0 to 3 CPU cycles per affected routine; the estimated median total impact is less than 1 second per machine per day. In the case of *printf(), glibc-audit is faster than glibc because the cleaned-up source helps gcc-3.2 avoid generating atrocious code when initializing printf_spec.info for parse_one_spec() in stdio-common/printf-parse.h.
Glibc-audit was constructed by running a memory access checker on the internal testcases of glibc, then analyzing the reported errors and modifying the source. The process revealed 10 memory access bugs in glibc-2.3.2-11.9. Seven were fixed in glibc-2.3.2-27.9, two more have been fixed in CVS, and one is a design flaw that probably will not be fixed.
Predecessor patches to glibc-audit-1 were submitted to the glibc project, but those patches were ignored [user "guest", password "guest"], declined, or rejected. There is enough improvement in usability and reliability to publish glibc-audit-1 separately.
The unmodified glibc-2.3.2-27.9.src.rpm is available from RedHat mirrors. rpmbuild -ba --target i686 took about 4 hours and 2.5GB of disk space on a machine with 1.1GHz CPU, 384MB RAM, UDMA100 disk.
Enhancements:
- The patches were updated to glibc-2.4-4.
- A glibc bug that interfered with gdb stop-on-solib-events was fixed.
- On x86, x86-64, and PowerPC, the __NR_open system call was improved to avoid leaking information from the user to the kernel.

The Linux Security Auditing Tool (LSAT) is a post install security auditor for Linux/Unix.
Linux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.

The Auditor security collection is a Live-System based on KNOPPIX. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes.
Independent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier. Even during the planning and development stages, our target was to achieve an excellent user-friendliness combined with an optimal toolset.
Professional open-source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking).
By this means, you instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly developed or converted from other system platforms, in order to make as many current auditing tools available as possible on one CD-ROM.
Tools like Wellenreiter and Kismet were equipped with an automatic hardware identification, thus avoiding irritating and annoying configuration of the wireless cards.
Enhancements:
New & Updated tools:
- proxychains 1-8-1 (for example scanning over proxy more easy)
- yersinia-0.5.4
- kismet-logfile-viewer klv.pl and klc.pl
- ntp fingerprinting tool
- tftp bruteforce tool
- snmp fuzzer
- cisco torch 0.4b
- unicornscan 0.4.2
- packit
- sendip
- nasl 2.2.4
- tcpick
- cryptcat
- amap version 4.8
- tcpsplit
- Ethereal version 10.11
- ettercap-ng-0.72 and modified the etter.conf
- replaced tinysnmp with snmp tools
- vnc2swf /usr/X11R6/bin/recordwin and vnc2swf
- edit_vnc2swf.py
- edit_mp3.py
- wpa-supplicatiant 0.3.8
- hostapd-utils 0.3.7
- ssldump
- fragrouter
- Metasploit 2.4 including all known updates
- airsnarf, but no menu at moment
- fakeap to /opt/auditor but no menu entry at moment, need to write a shell script
- dsniff 2.4b1-10
- nessus plugins updated
- exploit tree updated
- Snort 2.3.2-5
- Bleeding-edge rules for snort
- New aircrack
- New airsnort
- Bet i forgot some to mention.
New & updated drivers:
- rt2400 linux drivers and utils (untested)
- rtl8180 driver (8180_26_private.ko and open8180.ko and /usr/local/bin/wlanup and /usr/local/bin/wlandown) (Untested)
- hostap drivers 0.3.7
- ipw2100 & ipw2200 incl firmware, incl monitor mode
- Prism54 with injection patch
- Linux-wlan-ng with injection patch
- Madwifi with injection patch
- ACX drivers are back on cd
Addons:
- Default password list has been updated
- Added some changes to the network stack using /etc/sysctl.conf, which will be called from knoppix-autoconfig script
- New background image
Some fixes i remember:
- Kernel completely rebuilded to provide full functionality
- Isolinux now accepts bootparameters again
- USB drivers are back to /dev/sda and booting from stick works fine
- grub files have been fixed
- fixed hostname /etc/hosts
- /cdrom/index.html pointed to the old forum fixed that
- Added cardctl eject, cardctl insert into switch-to-XY scripts
- Fixed the homebutton of the konquerror when clicked first time
- Fixed the menuentry for nessus

Picalo Data Analysis Software is an free and open-source application that helps data analysts.
Picalo Data Analysis Software is an open source application that helps data analysts, fraud investigators, and auditors search through data sets for anomalies, trends, and other information.
Picalo is a scripting-oriented, data analysis toolkit that is focused on forensic data analysis. It is based in the Python language, and it includes a number of modules to crunch and massage data. I use it in my fraud research, and I publish it as open source in hopes that others will find it useful, contribute additions, and better the suite.
Main features:
- Picalo is an open framework. Users can either use the built-in routines or write their own. Those who write their own can share their routines with others in the Picalo community. The goal is to create a large set of analysis routines that meet many different needs--on a scale that a single company could never do.
- The philosophy of Picalo is to bridge the gap between technically-oriented analysts and non-technical analysts. Data analysts who know basic scripting routines (for loops, for example), are more efficient and effective than those who do not--usually by several orders of magnitude. Picalo allows those who are technical to quickly write wizard-based analyses that others in an organization can use. See the user manual for more information about the plugin Detectlet architecture.
- Picalo includes advanced analysis routines not found in competing products. For example, it supports grouping by a number of days for analysis of labor and time card data. Picalo can also automatically group records to achieve a specified degree of smoothness in data.
- Picalos language is based in Python, a powerful and easy-to-learn language. Rather than creating its own language (like competing packages do), Picalo rises on the shoulders of an extremely well-done language. You can download any of thousands of Python libraries from the Internet to use in your analyses.
- Picalo runs on Windows, Mac OS X, Linux, and many other systems. Most competing data analysis applications run only on Windows.
The Picalo community believes that data analysis is best done through scripting. However, we realize that not all analysts will learn and enjoy scripting. Picalos Deteclet architecture allows those who know how to script support those who do not through customizable wizards.
Picalo is also based in open source principles. This doesnt mean the designers cant make money with Picalo, it just means that the software code is open for others to fix bugs, code review, and improve upon. Profits should be made in using the software (on the job or in consulting practice) rather than in selling the software.

Xmmix is a premium audio mixer utility for the X window system using the Motif graphical user interface. It operates the input and output mixer section of the sound hardware on many PCs and workstations.
Xmmix offers superior features and look-and-feel. It is designed to be attractive, feature-rich and intuitive to use. It adapts to your sound hardware configuration and displays the appropriate set of controls. It also allows control settings to be saved and retrieved.
Xmmix is supported on Linux as well as other UNIX platforms that runs X11/Motif and the Open Sound System (OSS) package from 4Front technologies. OSS supports many different platforms, including IBM AIX, BSDI BSD/OS, FreeBSD, NetBSD, Linux. Sun Solaris, SCO Open Server, SCO UnixWare and others. Also, OSS supports a very wide range of audio hardware. Visit the Open Sound System web site for details. Linux systems running the ALSA (Advanced Linux Sound Architecture) sound drivers are also supported.
Note: Open Sound System was formerly known as "Unix Sound System" and "VoxWare". OSS/Free, a free version of Open Sound System, is provided with Linux. OSS/Free is also known as a Linux Sound Driver.
Main features:
- Open Sound System API compliant
- Linux sound driver compliant
- Input Controls
- Synth
- PCM
- Alt PCM
- Line
- Mic
- CD
- Rec Mon
- Speaker
- Output Controls
- Master Volume
- Rec Level
- Miscellaneous Controls
- Bass
- Treble
- Input Gain
- Output Gain
- Enhance
- Loudness
- Mute
- Reset to startup-settings
- Selector for recording source
- All level controls can be locked for simultaneous control of left and right channels, or unlocked for individual adjustments.
- Bass and Treble "center" button to set to flat setting.
- Appropriate controls are displayed, based on sound hardware capability and configuration.
- Write mixer settings to file
- Read settings from file
- Auto-initialization upon startup
- Supports running multiple copies of xmmix
- Attractive, intuitive-to-use
- Motif user interface with 3D appearance

Nations at War a Battlefield 2 tournament mod, Presently it DOES NOT SUPPORT SINGLE PLAYER. Nations at War is being built upon the roots of a large group of friends, some of which have played together for over a year.

Nations at War is a military based gaming community that follows the rank and unit structure based off of real life armies and units. We practice hard during the week developing teamwork and skills that translate into an excellent gaming experience on the long Saturday battles that occur every week on a pre-selected map.

Our community has a large amount of tournament experience, and expects and demands nothing but excellence on the battlefield and exceptional sportsmanship and comradery off of it. Nations at War is at its heart a large community of friends who put a premium on teamwork, respect and fairness. This is after all a game and something meant to be enjoyed by all, where one comes to make friends and have fun.