security auditing
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 1173
Linux Security Auditing Tool 0.9.6
Linux Security Auditing Tool (LSAT) is a post install security auditing tool. more>>
The Linux Security Auditing Tool (LSAT) is a post install security auditor for Linux/Unix.
Linux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
<<lessLinux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
Download (0.070MB)
Added: 2007-05-21 License: GPL (GNU General Public License) Price:
904 downloads
Spike PHP Security Audit Tool 0.23
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits. more>>
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits.
Usage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
<<lessUsage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
Download (0.018MB)
Added: 2006-08-01 License: Open Software License Price:
1192 downloads
Security::CVSS 0.3
Security::CVSS is a Perl module to calculate CVSS values (Common Vulnerability Scoring System). more>>
Security::CVSS is a Perl module to calculate CVSS values (Common Vulnerability Scoring System).
SYNOPSIS
use Security::CVSS;
my $CVSS = new Security::CVSS;
$CVSS->AccessVector(Local);
$CVSS->AccessComplexity(High);
$CVSS->Authentication(Not-Required);
$CVSS->ConfidentialityImpact(Complete);
$CVSS->IntegrityImpact(Complete);
$CVSS->AvailabilityImpact(Complete);
$CVSS->ImpactBias(Normal);
my $BaseScore = $CVSS->BaseScore();
$CVSS->Exploitability(Proof-Of-Concept);
$CVSS->RemediationLevel(Official-Fix);
$CVSS->ReportConfidence(Confirmed);
my $TemporalScore = $CVSS->TemporalScore()
$CVSS->CollateralDamagePotential(None);
$CVSS->TargetDistribution(None);
my $EnvironmentalScore = $CVSS->EnvironmentalScore();
my $CVSS = new CVSS({AccessVector => Local,
AccessComplexity => High,
Authentication => Not-Required,
ConfidentialityImpact => Complete,
IntegrityImpact => Complete,
AvailabilityImpact => Complete,
ImpactBias => Normal
});
my $BaseScore = $CVSS->BaseScore();
$CVSS->UpdateFromHash({AccessVector => Remote,
AccessComplexity => Low);
my $NewBaseScore = $CVSS->BaseScore();
$CVSS->Vector((AV:L/AC:H/Au:NR/C:N/I:P/A:C/B:C));
my $BaseScore = $CVSS->BaseScore();
my $Vector = $CVSS->Vector();
CVSS allows you to calculate all three types of score described under the CVSS system: Base, Temporal and Environmental.
You can modify any parameter via its accessor and recalculate at any time.
The temporal score depends on the base score, and the environmental score depends on the temporal score. Therefore you must remember to supply all necessary parameters.
<<lessSYNOPSIS
use Security::CVSS;
my $CVSS = new Security::CVSS;
$CVSS->AccessVector(Local);
$CVSS->AccessComplexity(High);
$CVSS->Authentication(Not-Required);
$CVSS->ConfidentialityImpact(Complete);
$CVSS->IntegrityImpact(Complete);
$CVSS->AvailabilityImpact(Complete);
$CVSS->ImpactBias(Normal);
my $BaseScore = $CVSS->BaseScore();
$CVSS->Exploitability(Proof-Of-Concept);
$CVSS->RemediationLevel(Official-Fix);
$CVSS->ReportConfidence(Confirmed);
my $TemporalScore = $CVSS->TemporalScore()
$CVSS->CollateralDamagePotential(None);
$CVSS->TargetDistribution(None);
my $EnvironmentalScore = $CVSS->EnvironmentalScore();
my $CVSS = new CVSS({AccessVector => Local,
AccessComplexity => High,
Authentication => Not-Required,
ConfidentialityImpact => Complete,
IntegrityImpact => Complete,
AvailabilityImpact => Complete,
ImpactBias => Normal
});
my $BaseScore = $CVSS->BaseScore();
$CVSS->UpdateFromHash({AccessVector => Remote,
AccessComplexity => Low);
my $NewBaseScore = $CVSS->BaseScore();
$CVSS->Vector((AV:L/AC:H/Au:NR/C:N/I:P/A:C/B:C));
my $BaseScore = $CVSS->BaseScore();
my $Vector = $CVSS->Vector();
CVSS allows you to calculate all three types of score described under the CVSS system: Base, Temporal and Environmental.
You can modify any parameter via its accessor and recalculate at any time.
The temporal score depends on the base score, and the environmental score depends on the temporal score. Therefore you must remember to supply all necessary parameters.
Download (0.005MB)
Added: 2007-04-11 License: Perl Artistic License Price:
928 downloads
Astaro Security Linux 7.5 Beta
Astaro Security Linux is an award-winning, unique network security solution in an integrated and easy-to-use and manage package. more>>
Astaro Security Linux 7.5 Beta offers you a wonderful and extremely useful product which is an award-winning, unique network security solution in an integrated and easy-to-use and manage package. Astaro Security Linux includes a combination of the following security applications:
- A Firewall with stateful packet inspection and application proxies guards Internet communications traffic in and out of the organization.
- A Virtual Private Network (VPN) gateway assures secure communications with remote offices, road warriors, and telecommuters.
- Anti-Virus defends computers from both email and web-bourne viruses.
- Intrusion Protection detects and stops hostile probes and application-based attacks.
- Spam Filtering eliminates the productivity drain of opening and deleting unsolicited emails.
- Surf Protection (Content Filtering) and Spyware Protection improve productivity by blocking inappropriate web activities, provide full protection from user tracking threats and violation of privacy.
Major Features:
- Protects all types of networks Windows, Linux, Unix and others.
- Delivers comprehensive features at low cost maximizing your ROI (return on investment).
- Highly effective. Has won numerous industry awards. Beat Cisco and Checkpoint in InfoWorld magazine product review, Beat IBM and Computer Associates in Linux World for Best Security Application.
- Integrated management platform features an intuitive browser-based interface and one-step updates for rapid deployment and easy management.
- Can be installed in under 15 minutes or purchased pre-installed on security appliances.
- Can start with firewall, VPN and spam protection and add other security applications as needed, seamlessly.
- Runs as a dedicated application server on top of a hardened operating system, which relieves operating system management headaches.
- Runs on systems ranging from small devices up to large multi-processor systems utilizing gigabytes of memory.
- Redundant systems can be configured to provide high availability and automatic failover in case of hardware or network failures.
- Load balancing improves performance - traffic shaping can set priorities by network, service and protocol.
- Logging, automatic backup, and diagnostic tools support high reliability.
- Free online evaluation workshop to get you started.
Enhancements:
- Major New Things:
- Intrusion Protection Performance
- Uses new version of the IPS engine
- Scales massively when used with Multi-Core CPU/Appliances
- Real-Time Bandwidth Monitor
- New Interface utilization bars on Dashboard (setup scale via QOS)
- Click for detailed overview as to "whats happening in my network right now"
- Import/Export Widget
- Gives the ability to work with manual lists for many features/fields
- Useful to import a large blacklist (for example) into the URL Blacklist
- Can been seen in many user-input boxes in Web, Mail and more. (Green Up/Down Arrows)
- Clone Objects
- Easily duplicate existing objects for quick re-use.
- Supported in most places for many objects (Definitions, Services, Certain Profiles/Actions)
- Extended Network Security Reporting
- Added Detailed Packet Filter/Firewall Reports
- Added Detailed IM/P2P Reports
- Reputation Support for Web Security
- Allows use of the trustedsource.org reputation for Web Filtering
- Documentation coming, for now visit their site/FAQ for more info on reputations
- DHCP Improvements
- Automatically map a current lease to a static assignment
- Limit DHCP leases to those with static assignments only
- Configurable DHCP lease time
- Servers retain configuration when enabled/disabled
- Multicast Routing Daemon
- PIM-SM Routing support
- More documentation on this implementation to come. Experiment with it and if it solves your needs.
- Other New Things:
- Windows SSL VPN Upgraded - New Client which supports X64 and many other options (download again via the UserPortal)
- Improved HTTP Caching - Increases hit/usage rates and makes the cache more effective.
- Quarantine/UserPortal Usability - Adds navigation to the bottom (supplementing the existing controls at the top), large amounts (250-1000) of displayed items per page, and sorting by subject line.
- Default Definition for "Internet" - Allows to specify "Internet" as an object which will exclude internal network(s) to aid policy creation (0.0.0.0/0 on Gateway interface)
- Customizable Shortcuts - Change the default Ctrl assignments to fit your preference
- Improved Definition/Services Sidebar - Mouseover now instantly shows full name and extended info to aid identifying desired object for drag n drop.
- User List shows static IPs - if assigned/configured (no need to edit in order to view)
- Live Log Negation - use to filter live logs to not show lines that match "-" entries i.e. -test to remove lines containing "test"
- Console/SSH Logins Trigger a notification - provides admin the needed insight when accessed.
- Instant Email Backup - Button for every created backup file which allows it to be sent immediately via email to configured addresses
- Custom text for notifications - Allows easier identification of which installation is sending the message. Especially useful if managing multiple sites using notifiers.
- Test NTP Sync - Button to immediately poll the configured NTP server
- Automatic Backup before Up2Date install
- Configurable Default for Lists - Allows for the amount of items per page (Packet Filter Rules, or anywhere there is a number amounts drop down) to have a larger default view
- Cluster/HA Serial Number View - Information on connected units made easier
- Schedule Firmware Installation - When an Up2Date for Firmware is available, you can schedule it to auto-install at a certain time (not a recurring setting)
- WebAdmin Network Section Split - Now two sections; "Network" and "Network Services" for usability.
- Search Boxes Retain Data - No need to re-enter query when returning from a drill down/result click.
- System Restart Reason - Allows logging of "why was system restarted" in the notification
- Group Tool tips for Members - Easily discern Network/Service Group members without having to edit in order to view
- Reporting Exclusions - Used to remove unwanted entries from various reports (such as Google-analytics from Web Security tables
- Log Flag for NAT Rules - Similar to packet filter, tells you which NAT rule was matched as part of traffic handling
- Masquerading for Additional IP Addresses - Allows the use of Masquerading (vs. just SNAT) for additional IPs bound to an interface
- Support for Multiple Authentication Servers - The authentication server section has been redesigned to support fallback/failover in an easier format, with many usability improvements
- SNMP MIB - Downloadable via the SNMP section of WebAdmin
- Up2date Status Reworked - Clarifies the current status of a Firmware Up2date to avoid confusion regarding the availability, download progress etc...of an issued Up2date.
- Inline/Snap Report Links - Directly moves the Admin to the relevant details report when browsing the embedded daily reports located throughout WebAdmin
- Global POP3 Sender Blacklist - Quarantined as "other" in the QM/EUP
- Dashboard RSS Feed - Provides visibility to select Astaro-issued items via WebAdmin
- Other magic features, enhancements, and usability improvements
Added: 2009-05-30 License: Free for non-commerc... Price: USD290.00
13 downloads
Other version of Astaro Security Linux
Astaro Security Linux 7.404 is an integrated and easy-to-use package of ... -winning, unique network security solution in. Astaro Security Linux includes a combinationPrice: USD290.00
License:Free for non-commerc...
License:Free for non-commerc...
security solution in an integrated and easy-to-use and manage package. award-winning, unique network security solution in an integrated and easy-to-use and managePrice: USD290.00
License:Free for non
License:Free for non
Astaro Security Linux is an award-winning, unique network security solution in an integrated ... Astaro Security Linux is an award-winning, unique network security solution in an integratedPrice: $290
License:Free for non-commercial use
License:Free for non-commercial use
Astaro Security Linux is an award-winning, unique network security solution in an integrated ... under 15 minutes or purchased pre-installed on security appliances. - Can start with firewallPrice: $290
License:Free for non-commercial use
License:Free for non-commercial use
Auditor Security Linux 200605
The Auditor Security Linux is a live CD based on Knoppix. more>>
The Auditor security collection is a Live-System based on KNOPPIX. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes.
Independent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier. Even during the planning and development stages, our target was to achieve an excellent user-friendliness combined with an optimal toolset.
Professional open-source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking).
By this means, you instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly developed or converted from other system platforms, in order to make as many current auditing tools available as possible on one CD-ROM.
Tools like Wellenreiter and Kismet were equipped with an automatic hardware identification, thus avoiding irritating and annoying configuration of the wireless cards.
Enhancements:
New & Updated tools:
- proxychains 1-8-1 (for example scanning over proxy more easy)
- yersinia-0.5.4
- kismet-logfile-viewer klv.pl and klc.pl
- ntp fingerprinting tool
- tftp bruteforce tool
- snmp fuzzer
- cisco torch 0.4b
- unicornscan 0.4.2
- packit
- sendip
- nasl 2.2.4
- tcpick
- cryptcat
- amap version 4.8
- tcpsplit
- Ethereal version 10.11
- ettercap-ng-0.72 and modified the etter.conf
- replaced tinysnmp with snmp tools
- vnc2swf /usr/X11R6/bin/recordwin and vnc2swf
- edit_vnc2swf.py
- edit_mp3.py
- wpa-supplicatiant 0.3.8
- hostapd-utils 0.3.7
- ssldump
- fragrouter
- Metasploit 2.4 including all known updates
- airsnarf, but no menu at moment
- fakeap to /opt/auditor but no menu entry at moment, need to write a shell script
- dsniff 2.4b1-10
- nessus plugins updated
- exploit tree updated
- Snort 2.3.2-5
- Bleeding-edge rules for snort
- New aircrack
- New airsnort
- Bet i forgot some to mention.
New & updated drivers:
- rt2400 linux drivers and utils (untested)
- rtl8180 driver (8180_26_private.ko and open8180.ko and /usr/local/bin/wlanup and /usr/local/bin/wlandown) (Untested)
- hostap drivers 0.3.7
- ipw2100 & ipw2200 incl firmware, incl monitor mode
- Prism54 with injection patch
- Linux-wlan-ng with injection patch
- Madwifi with injection patch
- ACX drivers are back on cd
Addons:
- Default password list has been updated
- Added some changes to the network stack using /etc/sysctl.conf, which will be called from knoppix-autoconfig script
- New background image
Some fixes i remember:
- Kernel completely rebuilded to provide full functionality
- Isolinux now accepts bootparameters again
- USB drivers are back to /dev/sda and booting from stick works fine
- grub files have been fixed
- fixed hostname /etc/hosts
- /cdrom/index.html pointed to the old forum fixed that
- Added cardctl eject, cardctl insert into switch-to-XY scripts
- Fixed the homebutton of the konquerror when clicked first time
- Fixed the menuentry for nessus
<<lessIndependent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier. Even during the planning and development stages, our target was to achieve an excellent user-friendliness combined with an optimal toolset.
Professional open-source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking).
By this means, you instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly developed or converted from other system platforms, in order to make as many current auditing tools available as possible on one CD-ROM.
Tools like Wellenreiter and Kismet were equipped with an automatic hardware identification, thus avoiding irritating and annoying configuration of the wireless cards.
Enhancements:
New & Updated tools:
- proxychains 1-8-1 (for example scanning over proxy more easy)
- yersinia-0.5.4
- kismet-logfile-viewer klv.pl and klc.pl
- ntp fingerprinting tool
- tftp bruteforce tool
- snmp fuzzer
- cisco torch 0.4b
- unicornscan 0.4.2
- packit
- sendip
- nasl 2.2.4
- tcpick
- cryptcat
- amap version 4.8
- tcpsplit
- Ethereal version 10.11
- ettercap-ng-0.72 and modified the etter.conf
- replaced tinysnmp with snmp tools
- vnc2swf /usr/X11R6/bin/recordwin and vnc2swf
- edit_vnc2swf.py
- edit_mp3.py
- wpa-supplicatiant 0.3.8
- hostapd-utils 0.3.7
- ssldump
- fragrouter
- Metasploit 2.4 including all known updates
- airsnarf, but no menu at moment
- fakeap to /opt/auditor but no menu entry at moment, need to write a shell script
- dsniff 2.4b1-10
- nessus plugins updated
- exploit tree updated
- Snort 2.3.2-5
- Bleeding-edge rules for snort
- New aircrack
- New airsnort
- Bet i forgot some to mention.
New & updated drivers:
- rt2400 linux drivers and utils (untested)
- rtl8180 driver (8180_26_private.ko and open8180.ko and /usr/local/bin/wlanup and /usr/local/bin/wlandown) (Untested)
- hostap drivers 0.3.7
- ipw2100 & ipw2200 incl firmware, incl monitor mode
- Prism54 with injection patch
- Linux-wlan-ng with injection patch
- Madwifi with injection patch
- ACX drivers are back on cd
Addons:
- Default password list has been updated
- Added some changes to the network stack using /etc/sysctl.conf, which will be called from knoppix-autoconfig script
- New background image
Some fixes i remember:
- Kernel completely rebuilded to provide full functionality
- Isolinux now accepts bootparameters again
- USB drivers are back to /dev/sda and booting from stick works fine
- grub files have been fixed
- fixed hostname /etc/hosts
- /cdrom/index.html pointed to the old forum fixed that
- Added cardctl eject, cardctl insert into switch-to-XY scripts
- Fixed the homebutton of the konquerror when clicked first time
- Fixed the menuentry for nessus
Download (645MB)
Added: 2005-06-22 License: GPL (GNU General Public License) Price:
1131 downloads
Luke Macken Security LiveCD
Luke Macken Security LiveCD provides a fully functional livecd based on Fedora for use in security auditing, forensics research. more>>
Luke Macken Security LiveCD provides a fully functional livecd based on Fedora for use in security auditing, forensics research, and penetration testing.
Main features:
- All of the security features and tools Fedora has to offer
- Features from the FedoraLiveCD
- Ability to install directly to hard drive
Spinning your own
# yum install mercurial livecd-tools
$ hg clone http://hg.lewk.org/security-livecd
# livecd-creator --config security-livecd/fedora-security-livecd.ks --fslabel=Fedora-7-Security-LiveCD
Making changes to the LiveCD is as simple as modifying the fedora-security-livecd.ks configuration file.
<<lessMain features:
- All of the security features and tools Fedora has to offer
- Features from the FedoraLiveCD
- Ability to install directly to hard drive
Spinning your own
# yum install mercurial livecd-tools
$ hg clone http://hg.lewk.org/security-livecd
# livecd-creator --config security-livecd/fedora-security-livecd.ks --fslabel=Fedora-7-Security-LiveCD
Making changes to the LiveCD is as simple as modifying the fedora-security-livecd.ks configuration file.
Download (MB)
Added: 2007-08-09 License: GPL (GNU General Public License) Price:
813 downloads
Security Officers Best Friend 25032007
Security Officers Best Friend (SOBF) is a Security Management and Analysis tool designed to be placed right ontop the SOMAP.org. more>>
Security Officers Best Friend (SOBF) is a Security Management and Analysis tool designed to be placed right ontop the SOMAP.org Repository. The SOBF Tool is currently in development and there is no public download at the moment.
Architecture:
The SOBF tool is written in Java. To run the SOBF Tool you need a Java VM version 1.5 or later. The data used within the tool is stored locally and can be protected accordingly.
It is a main goal to build the tool like an extendable toolset. While all the needed functionality is built into the SOBF tool, it is possible to extend that standard feature set with your own scripts and extentions.
Data Abstraction:
To abstract the database and to access the data more easily the SOBF tool makes use of the Cayenne Framework. The configuration informations are accessible and it is possible to enhance that configuration with your own data views. Such data views can then be used from within your own scripts to enhance the feature set of the SOBF tool.
Database / Storage:
The SOBF Tool currently uses the hsqldb Database engine to store the data. Updates to the Repository can be done without a hassle for the data records are identified by UUIDs as described on the Repositories information page.
The hsqldb stores the data in human readable form. If need be, the data can be extracted from the filesystem accessing the data files directly.
Since the SOBF tool uses the Cayenne Framework to abstract the database layer it is no problem to exchange the hsqldb with any other database system like Derby or PostgreSQL in future releases. This is an important feature for the SOBF tool should help a security officer with his work and not stand in his way. For this reason the SOBF tool should be as integratable into an environment as possible.
Reporting:
We use the Jasper Reports engine to render and print reports
Enhancements:
- This version contains the implementation of the complete Risk Assessment Workflow as described in the SOMAP.org Guide.
- The backup and restore mechanism was enhanced.
- Some changes and updates were made to the Dynamic Reports.
- The application experienced a general spring cleaning.
<<lessArchitecture:
The SOBF tool is written in Java. To run the SOBF Tool you need a Java VM version 1.5 or later. The data used within the tool is stored locally and can be protected accordingly.
It is a main goal to build the tool like an extendable toolset. While all the needed functionality is built into the SOBF tool, it is possible to extend that standard feature set with your own scripts and extentions.
Data Abstraction:
To abstract the database and to access the data more easily the SOBF tool makes use of the Cayenne Framework. The configuration informations are accessible and it is possible to enhance that configuration with your own data views. Such data views can then be used from within your own scripts to enhance the feature set of the SOBF tool.
Database / Storage:
The SOBF Tool currently uses the hsqldb Database engine to store the data. Updates to the Repository can be done without a hassle for the data records are identified by UUIDs as described on the Repositories information page.
The hsqldb stores the data in human readable form. If need be, the data can be extracted from the filesystem accessing the data files directly.
Since the SOBF tool uses the Cayenne Framework to abstract the database layer it is no problem to exchange the hsqldb with any other database system like Derby or PostgreSQL in future releases. This is an important feature for the SOBF tool should help a security officer with his work and not stand in his way. For this reason the SOBF tool should be as integratable into an environment as possible.
Reporting:
We use the Jasper Reports engine to render and print reports
Enhancements:
- This version contains the implementation of the complete Risk Assessment Workflow as described in the SOMAP.org Guide.
- The backup and restore mechanism was enhanced.
- Some changes and updates were made to the Dynamic Reports.
- The application experienced a general spring cleaning.
Download (14.6MB)
Added: 2007-03-25 License: GPL (GNU General Public License) Price:
943 downloads
Other version of Security Officers Best Friend
informations with a concrete inventory to help the security officer in analyzing and managing ... from the SOBF Tool a security officer can generate reports about situations, gaps, protectionLicense:GPL (GNU General Public License)
Ubuntu Security Notice Monitor 0.5
Ubuntu Security Notice Monitor is a karamba theme that displays the ten most recent USN report titles in a desktop widget. more>>
Ubuntu Security Notice Monitor is a karamba theme that displays the ten most recent USN report titles in a desktop widget.
Ubuntu Security Notice Monitor works by parsing the link text out of the USN page at http://www.ubuntulinux.org/usn using a Python backend.
Thanks goes to Richard "Ricardo" Szlachta for the graphics work.
<<lessUbuntu Security Notice Monitor works by parsing the link text out of the USN page at http://www.ubuntulinux.org/usn using a Python backend.
Thanks goes to Richard "Ricardo" Szlachta for the graphics work.
Download (0.022MB)
Added: 2006-06-29 License: GPL (GNU General Public License) Price:
1219 downloads
Network Security Toolkit 1.5.0
Network Security Toolkit is a bootable ISO live CD and its based on Fedora Core 2. more>>
Network Security Toolkit is a bootable ISO live CD and its based on Fedora Core 2.
The toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms.
The main intent of developing this toolkit was to provide the network security administrator with a comprehensive set of Open Source Network Security Tools. The majority of tools published in the article: Top 75 Security Tools by insecure.org are available in the toolkit.
What we find rather fascinating with NST is that we can transform most x86 systems (Pentium II and above) into a system designed for network traffic analysis, intrusion detection, network packet generation, wireless network monitoring, a virtual system service server, or a sophisticated network/host scanner.
This can all be done without disturbing or modifying any underlying sub-system disk. NST can be up and running on a typical x86 notebook in less than a minute by just rebooting with the NST ISO CD. The notebooks hard disk will not be altered in any way.
NST also makes an excellent tool to help one with all sorts of crash recovery troubleshooting scenarios and situations.
Enhancements:
- We are pleased to announce the latest NST release: v1.5.0. This release is based on Fedora Core 5 using the Linux kernel 2.6.18. Here are some of the highlights for this release: the NST Web User Interface (WUI), has been greatly enhanced and cleaned up; extensive additions to managing and analyzing network packet captures; the ability to setup and manage printers; the ability to easily mount many different supported file system types; the ability to manage the NST as a file server (both NFS and CIFS); the addition of the Inprotect package (a Nessus manager); the addition of the Zabbix package (another network resource monitoring tool - similar to Nagios)....
<<lessThe toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms.
The main intent of developing this toolkit was to provide the network security administrator with a comprehensive set of Open Source Network Security Tools. The majority of tools published in the article: Top 75 Security Tools by insecure.org are available in the toolkit.
What we find rather fascinating with NST is that we can transform most x86 systems (Pentium II and above) into a system designed for network traffic analysis, intrusion detection, network packet generation, wireless network monitoring, a virtual system service server, or a sophisticated network/host scanner.
This can all be done without disturbing or modifying any underlying sub-system disk. NST can be up and running on a typical x86 notebook in less than a minute by just rebooting with the NST ISO CD. The notebooks hard disk will not be altered in any way.
NST also makes an excellent tool to help one with all sorts of crash recovery troubleshooting scenarios and situations.
Enhancements:
- We are pleased to announce the latest NST release: v1.5.0. This release is based on Fedora Core 5 using the Linux kernel 2.6.18. Here are some of the highlights for this release: the NST Web User Interface (WUI), has been greatly enhanced and cleaned up; extensive additions to managing and analyzing network packet captures; the ability to setup and manage printers; the ability to easily mount many different supported file system types; the ability to manage the NST as a file server (both NFS and CIFS); the addition of the Inprotect package (a Nessus manager); the addition of the Zabbix package (another network resource monitoring tool - similar to Nagios)....
Download (364.9MB)
Added: 2007-02-14 License: GPL (GNU General Public License) Price:
991 downloads
Network Security Monitor Daemon 4.0
The Network Security Monitor Daemon is a lightweight network security monitor for TCP/IP LANs. more>>
The Network Security Monitor Daemon is a lightweight network security monitor for TCP/IP LANs. It will capture certain network events and record them in a relational database. The recorded data is available for analysis through a CGI-based interface.
You can run test version with ./Monitord, just to see how it works. Production version should be run in background, v.g. with nohup ./monitord &. Both versions will accept a device name as a parameter (default: eth0). You can send them SIGHUP at any time to print some stats. If you send SIGTERM, SIGQUIT or SIGINT, all threads will end gracefully.
Enhancements:
- Linux Kernel with "packet sockets" and "socket filtering" support.
- GNU C Library 2 (glibc2) with LinuxThreads support. (integrated in most recent versions).
- Full MySQL, including headers and libmysqlclient_r.
- GNU C Compiler (gcc).
- GNU Make (make).
- Perl (perl).
- Wget (wget).
Enhancements:
- Added chmod 4755 ... in Makefile
- Root should run make now, but not the daemon ;-)
- The daemon will drop root privileges as soon as possible
- (after creating the raw socket with an attached linux socket
- filter and putting the interface in promiscuous mode)
- No threads run with root privileges so its much safer
- (specially the new server thread which reads remote user input)
- Added stats thread
- To calculate/mantain exponential averages
- Added server thread
- It accepts HTTP requests and serves stats in XML
<<lessYou can run test version with ./Monitord, just to see how it works. Production version should be run in background, v.g. with nohup ./monitord &. Both versions will accept a device name as a parameter (default: eth0). You can send them SIGHUP at any time to print some stats. If you send SIGTERM, SIGQUIT or SIGINT, all threads will end gracefully.
Enhancements:
- Linux Kernel with "packet sockets" and "socket filtering" support.
- GNU C Library 2 (glibc2) with LinuxThreads support. (integrated in most recent versions).
- Full MySQL, including headers and libmysqlclient_r.
- GNU C Compiler (gcc).
- GNU Make (make).
- Perl (perl).
- Wget (wget).
Enhancements:
- Added chmod 4755 ... in Makefile
- Root should run make now, but not the daemon ;-)
- The daemon will drop root privileges as soon as possible
- (after creating the raw socket with an attached linux socket
- filter and putting the interface in promiscuous mode)
- No threads run with root privileges so its much safer
- (specially the new server thread which reads remote user input)
- Added stats thread
- To calculate/mantain exponential averages
- Added server thread
- It accepts HTTP requests and serves stats in XML
Download (0.033MB)
Added: 2006-07-12 License: GPL (GNU General Public License) Price:
1203 downloads
XML Security Library 1.2.10
XML Security Library is a C library based on LibXML2. more>>
XML Security Library is a C library based on LibXML2.
The library supports major XML security standards:
- XML Signature
- XML Encryption
- Canonical XML (was included in LibXML2)
- Exclusive Canonical XML (was included in LibXML2)
XML Security Library is released under the MIT Licence see the Copyright file in the distribution for details.
<<lessThe library supports major XML security standards:
- XML Signature
- XML Encryption
- Canonical XML (was included in LibXML2)
- Exclusive Canonical XML (was included in LibXML2)
XML Security Library is released under the MIT Licence see the Copyright file in the distribution for details.
Download (1.6MB)
Added: 2006-06-13 License: MIT/X Consortium License Price:
1228 downloads
Local Area Security 0.5
L.A.S. is a research group focused on information security related subjects. more>>
Local Area Security is a research group focused on information security related subjects. We are most known for L.A.S. Linux. Our live-CD security toolkit.
Local Area Security is a project that was started in 2002 to research information security related topics. During that time there was no real live-CD toolkit focused on information security.
So Jascha, the project founder built one from a stripped down version of Knoppix called Model-K. Both of which were built from Debian Linux.
Up until version 0.4 L.A.S. Linux was command line only. Which made it limited to some of the tools it could contain since many require a GUI. Or at least for many it is preferable to have one. So FluxBox was added as the desktop since it is light weight and very feature filled.
It was during this time that Jascha came up with the idea of keeping the size of L.A.S. as small as possible, which lead to a target maximum size of 180MBs. The size of the original mini-CDs that were available at the time. This forced the selection of tools and features to be weighed heavily since unlike other live-CDs that throw in everything including the kitchen sink. L.A.S. was designed from the ground up to be a tool not a all-inclusive grab bag of applications.
As well as many advances for live-CDs came about, such as to-ram that allows booting a live-CD into the physical RAM of a computer. Which by chance L.A.S. was perfectly cut out for. With as little as 256MB of RAM people could boot L.A.S. and then free up their CD-ROMs for burring etc.
For forensics this was a big plus, along with many other uses. Plus L.A.S. ran very fast in RAM which helped with running Nessus, Nmap, or other tools. When compared to full size (700MB) CDs which would require 1GB of RAM to use the to-ram option, it was really no contest.
<<lessLocal Area Security is a project that was started in 2002 to research information security related topics. During that time there was no real live-CD toolkit focused on information security.
So Jascha, the project founder built one from a stripped down version of Knoppix called Model-K. Both of which were built from Debian Linux.
Up until version 0.4 L.A.S. Linux was command line only. Which made it limited to some of the tools it could contain since many require a GUI. Or at least for many it is preferable to have one. So FluxBox was added as the desktop since it is light weight and very feature filled.
It was during this time that Jascha came up with the idea of keeping the size of L.A.S. as small as possible, which lead to a target maximum size of 180MBs. The size of the original mini-CDs that were available at the time. This forced the selection of tools and features to be weighed heavily since unlike other live-CDs that throw in everything including the kitchen sink. L.A.S. was designed from the ground up to be a tool not a all-inclusive grab bag of applications.
As well as many advances for live-CDs came about, such as to-ram that allows booting a live-CD into the physical RAM of a computer. Which by chance L.A.S. was perfectly cut out for. With as little as 256MB of RAM people could boot L.A.S. and then free up their CD-ROMs for burring etc.
For forensics this was a big plus, along with many other uses. Plus L.A.S. ran very fast in RAM which helped with running Nessus, Nmap, or other tools. When compared to full size (700MB) CDs which would require 1GB of RAM to use the to-ram option, it was really no contest.
Download (210MB)
Added: 2005-11-09 License: GPL (GNU General Public License) Price:
840 downloads
FREE CompuSec PC Security Suite - Linux 4.18.1
Protects PC: Pre-boot authentication, encrypts full HDD, file, floppy &USB drive more>> FREE CompuSec is a suite of security solutions designed to completely protect desktops and notebooks. This software is a full version without any limitations and it is not a demo. The security functions that can be found in FREE CompuSec are listed below. Pre-boot Access Control requires you to enter your userID and password before the system will boot up.
Once authentication is completed, FREE CompuSec will automatically log you into the windows environment and provide a screen saver lock as well. Full Hard Disk Encryption using AES as the standard algorithm to keep your data safe. The intelligent program ensures fast encryption speeds that will minimize any effect on performance. A file encryption function is also included allowing users to secure exchange files via FTP, email attachements etc. Encryption of Floppy Disk and removable media (e.g USB thumb drives or HDD, firewire HDD etc) allows users to secure their data between their CompuSec protected PCs. Encryption of Server Files & Subdirectories - SafeLan, allows users to store and share encrypted files in a network. FREE CompuSec can be deployed as single user installation or centrally managed. With central management, the security definitions such as, password lifetime, encryption keys and user access rights can be defined centrally.
FREE CompuSec is Free from CE-Infosys. Other versions feature the use of e-Identity (a smart card or USB token) or Biometric fingerprint scanner that will complement your password and store your digital certificates, providing strong two-factor authentication and access control. FREE CompuSec can be upgraded at any time. A FREE CompuSec Window version can be downloaded @ http://www.ce-infosys.com/CeiNews_FreeCompuSec.asp
There is even Free CompuSec support at http://groups.yahoo.com/group/CompuSec<<less
Download (13.70MB)
Added: 2009-04-14 License: Freeware Price: Free
195 downloads
FREE CompuSec® PC Security Suite - Linux 4.18.1
FREE CompuSec® is a security software designed to protect desktops and notebooks. It features pre-boot authentication, single-sign-on for windows Logon, full hard disk encryption, file encryption for secure exchange and the encryption of floppy diskettes and other removable media (USB thumb drives or HDD, firewire HDD etc). This software is a full version without any limitations. It is not a demo or trial version. more>> <<less
Download (7.4Mb)
Added: 2005-02-22 License: Free Price: Free
11 downloads
Network Security Analysis Tool 1.5
Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services. more>>
Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services and check for versions, security problems, gather information about the servers and the machine, and much more.
A manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.
New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.
Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net
Currently, these are lists of vulnerabilities:
nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)
<<lessA manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.
New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.
Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net
Currently, these are lists of vulnerabilities:
nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)
Download (0.40MB)
Added: 2006-07-14 License: GPL (GNU General Public License) Price:
1204 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above security auditing search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
