Free security distribution software for linux

Core is a minimal distribution of the GNU/Linux operating system designed to be the basis for a complete system constructed by the end user. A fresh installation of Core will boot into a console and provide the user with the tools needed to download, compile and install other applications. Core contains nothing beyond what is required to perform these tasks.
Core is primarily designed for experienced Linux users, though it has found an audience with those looking to learn about the internals and operation of a Linux system. Core requires the user to manually configure, compile and install applications and expects the user to consult man pages and other documentation.
Installation:
These instructions are incomplete, but should be sufficient:
- Download, burn and boot the ISO.
- Partition, format and mount the hard drive.
- Run install_core [mount point of hard drive].
- Optional packages in /pkgs/optional can be installed with corepkg(8).
- Copy the kernel from /pkgs/kernel to /usr/src of the hard drive.
- Run chroot [mount point] bash -l to chroot into the new system.
- Compile and install the Linux kernel [be sure to run LILO].
- Review and modify the files under /etc.
- Reboot and start constructing the new system.
MD5 sum: 5da52af0d4b0a599cc119afcace77c9c

JackLab Audio Distribution is a remastered openSUSE for musicians, producers and media creators.

The JackLab Team is proud to present the first public alpha-release of the JackLab Audio Distribution (JAD). The 1.2GB DVD iso can be downloaded from jacklab.org.

We have found that musicians have particular requirements for their Linux environment. A Linux-based distribution that is designed for music needs to be flexible, powerful, yet easy and quick to use. All of these things are essential in a busy, creative environment. Thinking about these requirements, we decided to base JAD on openSUSE due to its stability and long development history. All major administrative tasks can be done graphically and easily without having to learn any complicated terminal commands.

JAD will be fully compatible with the recently released openSUSE 10.2. It will contain a full production environment for media production, primarily music. For this, the JackLab team added a Realtime Kernel version 2.6.19 to have fast audio processing with a latency up to 1.5ms. The default audio system will be based on the the Jack Audio Connection Kit (JACK) which is designed for the needs of musicians and producers and gives a professional audio/midi controlling interface.

The installer is based on the acclaimed YaST2, which also serves as an easy-to-use administrative tool. To keep as many essential computer resources for music as possible, we have decided to use Enlightenment D17 desktop shell as the default window manager. KDE desktop environment is also included, so the user-friendly file manager - Konqueror, is available along with Kmail, Konversation, k3b and other KDE tools. For music creation and editing, we have included around 70 audio applications with sequencers, synthesizers and tools all installed and ready to go. User-friendly support for setting up and running VST instruments and effects is given. Additionally, there are applications for video production and a graphic suite that are included on the DVD. For browsing the internet, we have included Firefox 2.0 chosen for its stability, security and extendability.

JAD is a community based effort and is the culmination of the work of many contributors. Recently, JackLab and PackMan (packman.links2linux.de) have joined forces to offer JAD access to the PackMan repositories so that up-to-date audio software, non-audio software and multimedia codecs are available to JAD users. The JAD development team would like you to participate in the development process too. There are different ways you can help:

-As a tester, you can download the most recent version and use the bugtracker to report any problems.
-You can participate in the graphics contest: The best graphics submitted will be used as default for the bootscreen, wallpaper, skins and icons.
-You can submit feature requests and take part in discussions on the mailing list.
-For taking part in providing user support, there is a web based forum and an IRC channel - it is also an essential part of the development process to see feedback.

The Linux Security Auditing Tool (LSAT) is a post install security auditor for Linux/Unix.
Linux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.

Ad-hoc Wireless Distribution Service (AWDS) is a Layer 2 routing protocol for wireless mesh networks. The project provides transparent Ethernet-like access to all participating nodes, thus easily allowing the employment of different higher level protocols like IP (with DHCP), IPv6, AppleTalk, ...

A Linux implementation of AWDS can be downloaded from our download section. Ports to other platforms are highly appreciated!

Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services and check for versions, security problems, gather information about the servers and the machine, and much more.

A manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.

New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.

Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net

Currently, these are lists of vulnerabilities:

nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)

XML Security Library is a C library based on LibXML2.
The library supports major XML security standards:
- XML Signature
- XML Encryption
- Canonical XML (was included in LibXML2)
- Exclusive Canonical XML (was included in LibXML2)
XML Security Library is released under the MIT Licence see the Copyright file in the distribution for details.

• A Firewall with stateful packet inspection and application proxies guards Internet communications traffic in and out of the organization.
• A Virtual Private Network (VPN) gateway assures secure communications with remote offices, road warriors and telecommuters.
• Anti-Virus defends computers from both email and web-bourne viruses.
• Intrusion Protection detects and stops hostile probes and application-based attacks.
• Spam Filtering eliminates the productivity drain of opening and deleting unsolicited emails.
• Surf Protection (Content Filtering) and Spyware Protection improve productivity by blocking inappropriate web activities, provide full protection from user tracking threats and violation of privacy.

Major Features:

1. Protects all types of networks Windows, Linux, Unix and others.
2. Delivers comprehensive features at low cost maximizing your ROI (return on investment).
3. Highly effective. Has won numerous industry awards. Beat Cisco and Checkpoint in InfoWorld magazine product review, Beat IBM and Computer Associates in Linux World for Best Security Application.
4. Integrated management platform features an intuitive browser-based interface and one-step updates for rapid deployment and easy management.
5. Can be installed in under 15 minutes or purchased pre-installed on security appliances.
6. Can start with firewall, VPN and spam protection and add other security applications as needed, seamlessly.
7. Runs as a dedicated application server on top of a hardened operating system, which relieves operating system management headaches.
8. Runs on systems ranging from small devices up to large multi-processor systems utilizing gigabytes of memory.
9. Redundant systems can be configured to provide high availability and automatic failover in case of hardware or network failures.
10. Load balancing improves performance traffic shaping can set priorities by network, service and protocol.
11. Logging, automatic backup, and diagnostic tools support high reliability.
12. Free online evaluation workshop to get you started.

Enhancements:

• This Up2Date addresses a few issues that did not make the 7.4 GA version in time.
• This is a pure bugfix/stability release that strengthens the quality of your installation.

Security Officers Best Friend (SOBF Tool) is an Information Security Risk Analysis and Management tool. It is the reference implementation of the SOMAP.org Guide and follows the risk analysis workflow as described in the Guide.

The SOBF Tool is currently in development and there are public preview downloads from time to time.

The SOBF tool makes heavy use of the structures and references from the Repository and features a layer with personalized data ontop the theoretical layer provided by the Repository. The SOBF tool links theoretical informations with a concrete inventory to help the security officer in analyzing and managing his or her assets.

With the data and calculations from the SOBF Tool a security officer can generate reports about situations, gaps, protection profiles and the state of an environment.