security guard fight
Sponsored Links
Sponsored Links
Secleted [ 0 ] software to compare
Results 1 - 15 of about 1162
XML Security Library 1.2.10
XML Security Library is a C library based on LibXML2. more>>
XML Security Library is a C library based on LibXML2.
The library supports major XML security standards:
- XML Signature
- XML Encryption
- Canonical XML (was included in LibXML2)
- Exclusive Canonical XML (was included in LibXML2)
XML Security Library is released under the MIT Licence see the Copyright file in the distribution for details.
<<lessThe library supports major XML security standards:
- XML Signature
- XML Encryption
- Canonical XML (was included in LibXML2)
- Exclusive Canonical XML (was included in LibXML2)
XML Security Library is released under the MIT Licence see the Copyright file in the distribution for details.
Download (1.6MB)
Added: 2006-06-13 License: MIT/X Consortium License Price:
1228 downloads
Linux Security Auditing Tool 0.9.6
Linux Security Auditing Tool (LSAT) is a post install security auditing tool. more>>
The Linux Security Auditing Tool (LSAT) is a post install security auditor for Linux/Unix.
Linux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
<<lessLinux Security Auditing Tool checks many system configurations and local network settings on the system for common security/config errors and for packages that are not needed.
It (for now) works under Linux (x86: Gentoo, RedHat, Debian, Mandrake; Sparc: SunOS (2.x), Redhat sparc, Mandrake Sparc; Apple OS X).
Enhancements:
- The dependency on the popt library has been removed.
- This release adds extra passwd and group checks under Linux, a check for failed logins under Linux/Solaris, a check for kernel modules under Solaris, network interface stats, and routing checks. It fixes a problem in checknetforward giving false positives, and an issue where verbose output was not very consistent.
- The kernel module check under Linux has been modified.
Download (0.070MB)
Added: 2007-05-21 License: GPL (GNU General Public License) Price:
904 downloads
Spike PHP Security Audit Tool 0.23
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits. more>>
Spike PHP Security Audit Tool project is a tool that performs a static analysis of PHP code for security exploits.
Usage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
<<lessUsage:
To install, unzip Spike phpSecAudit package.
> unzip spike_phpSecAudit.zip
Change directory to your php repository.
> cd /path/to/code/to/audit
Execute the run.php, passing the file name or directory to audit.
> php /path/to/spike_phpSecAudit/run.php test_file.php
or
> php /path/to/spike_phpSecAudit/run.php dir_name
Enhancements:
- Modified to be PHP 4 friendly.
- A few functions have been added to the knowledge base: extract, shell_exec, pcntl_exec, and exec.
- The organization of the knowledge base file (vuln_db.xml) has been slightly improved.
- The _getAllPhpFiles function may miss a few (unverified).
- The tokenizer needs to be able to differentiate between a native function call and class method call of the same name, i.e. mail() and $class->mail().
Download (0.018MB)
Added: 2006-08-01 License: Open Software License Price:
1192 downloads
Security::CVSS 0.3
Security::CVSS is a Perl module to calculate CVSS values (Common Vulnerability Scoring System). more>>
Security::CVSS is a Perl module to calculate CVSS values (Common Vulnerability Scoring System).
SYNOPSIS
use Security::CVSS;
my $CVSS = new Security::CVSS;
$CVSS->AccessVector(Local);
$CVSS->AccessComplexity(High);
$CVSS->Authentication(Not-Required);
$CVSS->ConfidentialityImpact(Complete);
$CVSS->IntegrityImpact(Complete);
$CVSS->AvailabilityImpact(Complete);
$CVSS->ImpactBias(Normal);
my $BaseScore = $CVSS->BaseScore();
$CVSS->Exploitability(Proof-Of-Concept);
$CVSS->RemediationLevel(Official-Fix);
$CVSS->ReportConfidence(Confirmed);
my $TemporalScore = $CVSS->TemporalScore()
$CVSS->CollateralDamagePotential(None);
$CVSS->TargetDistribution(None);
my $EnvironmentalScore = $CVSS->EnvironmentalScore();
my $CVSS = new CVSS({AccessVector => Local,
AccessComplexity => High,
Authentication => Not-Required,
ConfidentialityImpact => Complete,
IntegrityImpact => Complete,
AvailabilityImpact => Complete,
ImpactBias => Normal
});
my $BaseScore = $CVSS->BaseScore();
$CVSS->UpdateFromHash({AccessVector => Remote,
AccessComplexity => Low);
my $NewBaseScore = $CVSS->BaseScore();
$CVSS->Vector((AV:L/AC:H/Au:NR/C:N/I:P/A:C/B:C));
my $BaseScore = $CVSS->BaseScore();
my $Vector = $CVSS->Vector();
CVSS allows you to calculate all three types of score described under the CVSS system: Base, Temporal and Environmental.
You can modify any parameter via its accessor and recalculate at any time.
The temporal score depends on the base score, and the environmental score depends on the temporal score. Therefore you must remember to supply all necessary parameters.
<<lessSYNOPSIS
use Security::CVSS;
my $CVSS = new Security::CVSS;
$CVSS->AccessVector(Local);
$CVSS->AccessComplexity(High);
$CVSS->Authentication(Not-Required);
$CVSS->ConfidentialityImpact(Complete);
$CVSS->IntegrityImpact(Complete);
$CVSS->AvailabilityImpact(Complete);
$CVSS->ImpactBias(Normal);
my $BaseScore = $CVSS->BaseScore();
$CVSS->Exploitability(Proof-Of-Concept);
$CVSS->RemediationLevel(Official-Fix);
$CVSS->ReportConfidence(Confirmed);
my $TemporalScore = $CVSS->TemporalScore()
$CVSS->CollateralDamagePotential(None);
$CVSS->TargetDistribution(None);
my $EnvironmentalScore = $CVSS->EnvironmentalScore();
my $CVSS = new CVSS({AccessVector => Local,
AccessComplexity => High,
Authentication => Not-Required,
ConfidentialityImpact => Complete,
IntegrityImpact => Complete,
AvailabilityImpact => Complete,
ImpactBias => Normal
});
my $BaseScore = $CVSS->BaseScore();
$CVSS->UpdateFromHash({AccessVector => Remote,
AccessComplexity => Low);
my $NewBaseScore = $CVSS->BaseScore();
$CVSS->Vector((AV:L/AC:H/Au:NR/C:N/I:P/A:C/B:C));
my $BaseScore = $CVSS->BaseScore();
my $Vector = $CVSS->Vector();
CVSS allows you to calculate all three types of score described under the CVSS system: Base, Temporal and Environmental.
You can modify any parameter via its accessor and recalculate at any time.
The temporal score depends on the base score, and the environmental score depends on the temporal score. Therefore you must remember to supply all necessary parameters.
Download (0.005MB)
Added: 2007-04-11 License: Perl Artistic License Price:
928 downloads
Network Security Analysis Tool 1.5
Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services. more>>
Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services and check for versions, security problems, gather information about the servers and the machine, and much more.
A manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.
New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.
Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net
Currently, these are lists of vulnerabilities:
nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)
<<lessA manpage providing extensive information on NSAT has been included in the distribution. It is available after a make install, or just by typing man doc/nsat.8 from this dir. It is suggested that you inform yourself at least about the -v (scan verbosity) option and edit the configuration file. To learn about changes in this version, please consult doc/CHANGES.
New to this version is support for distributed scanning. The manpage describes how to do a distributed scan. Note that distributed scanning in this version is just a preliminary, proof-of-concept, implementation with no guarantees for its security, reliability, or performance.
Check for updated vulnerability lists, config files, etc. from
http://nsat.sourceforge.net
Currently, these are lists of vulnerabilities:
nsat.cgi (CGI scripts)
nsat.conf (configuration)
src/mod/snmp.h (SNMP community names)
Download (0.40MB)
Added: 2006-07-14 License: GPL (GNU General Public License) Price:
1204 downloads
Astaro Security Linux 7.5 Beta
Astaro Security Linux is an award-winning, unique network security solution in an integrated and easy-to-use and manage package. more>>
Astaro Security Linux 7.5 Beta offers you a wonderful and extremely useful product which is an award-winning, unique network security solution in an integrated and easy-to-use and manage package. Astaro Security Linux includes a combination of the following security applications:
- A Firewall with stateful packet inspection and application proxies guards Internet communications traffic in and out of the organization.
- A Virtual Private Network (VPN) gateway assures secure communications with remote offices, road warriors, and telecommuters.
- Anti-Virus defends computers from both email and web-bourne viruses.
- Intrusion Protection detects and stops hostile probes and application-based attacks.
- Spam Filtering eliminates the productivity drain of opening and deleting unsolicited emails.
- Surf Protection (Content Filtering) and Spyware Protection improve productivity by blocking inappropriate web activities, provide full protection from user tracking threats and violation of privacy.
Major Features:
- Protects all types of networks Windows, Linux, Unix and others.
- Delivers comprehensive features at low cost maximizing your ROI (return on investment).
- Highly effective. Has won numerous industry awards. Beat Cisco and Checkpoint in InfoWorld magazine product review, Beat IBM and Computer Associates in Linux World for Best Security Application.
- Integrated management platform features an intuitive browser-based interface and one-step updates for rapid deployment and easy management.
- Can be installed in under 15 minutes or purchased pre-installed on security appliances.
- Can start with firewall, VPN and spam protection and add other security applications as needed, seamlessly.
- Runs as a dedicated application server on top of a hardened operating system, which relieves operating system management headaches.
- Runs on systems ranging from small devices up to large multi-processor systems utilizing gigabytes of memory.
- Redundant systems can be configured to provide high availability and automatic failover in case of hardware or network failures.
- Load balancing improves performance - traffic shaping can set priorities by network, service and protocol.
- Logging, automatic backup, and diagnostic tools support high reliability.
- Free online evaluation workshop to get you started.
Enhancements:
- Major New Things:
- Intrusion Protection Performance
- Uses new version of the IPS engine
- Scales massively when used with Multi-Core CPU/Appliances
- Real-Time Bandwidth Monitor
- New Interface utilization bars on Dashboard (setup scale via QOS)
- Click for detailed overview as to "whats happening in my network right now"
- Import/Export Widget
- Gives the ability to work with manual lists for many features/fields
- Useful to import a large blacklist (for example) into the URL Blacklist
- Can been seen in many user-input boxes in Web, Mail and more. (Green Up/Down Arrows)
- Clone Objects
- Easily duplicate existing objects for quick re-use.
- Supported in most places for many objects (Definitions, Services, Certain Profiles/Actions)
- Extended Network Security Reporting
- Added Detailed Packet Filter/Firewall Reports
- Added Detailed IM/P2P Reports
- Reputation Support for Web Security
- Allows use of the trustedsource.org reputation for Web Filtering
- Documentation coming, for now visit their site/FAQ for more info on reputations
- DHCP Improvements
- Automatically map a current lease to a static assignment
- Limit DHCP leases to those with static assignments only
- Configurable DHCP lease time
- Servers retain configuration when enabled/disabled
- Multicast Routing Daemon
- PIM-SM Routing support
- More documentation on this implementation to come. Experiment with it and if it solves your needs.
- Other New Things:
- Windows SSL VPN Upgraded - New Client which supports X64 and many other options (download again via the UserPortal)
- Improved HTTP Caching - Increases hit/usage rates and makes the cache more effective.
- Quarantine/UserPortal Usability - Adds navigation to the bottom (supplementing the existing controls at the top), large amounts (250-1000) of displayed items per page, and sorting by subject line.
- Default Definition for "Internet" - Allows to specify "Internet" as an object which will exclude internal network(s) to aid policy creation (0.0.0.0/0 on Gateway interface)
- Customizable Shortcuts - Change the default Ctrl assignments to fit your preference
- Improved Definition/Services Sidebar - Mouseover now instantly shows full name and extended info to aid identifying desired object for drag n drop.
- User List shows static IPs - if assigned/configured (no need to edit in order to view)
- Live Log Negation - use to filter live logs to not show lines that match "-" entries i.e. -test to remove lines containing "test"
- Console/SSH Logins Trigger a notification - provides admin the needed insight when accessed.
- Instant Email Backup - Button for every created backup file which allows it to be sent immediately via email to configured addresses
- Custom text for notifications - Allows easier identification of which installation is sending the message. Especially useful if managing multiple sites using notifiers.
- Test NTP Sync - Button to immediately poll the configured NTP server
- Automatic Backup before Up2Date install
- Configurable Default for Lists - Allows for the amount of items per page (Packet Filter Rules, or anywhere there is a number amounts drop down) to have a larger default view
- Cluster/HA Serial Number View - Information on connected units made easier
- Schedule Firmware Installation - When an Up2Date for Firmware is available, you can schedule it to auto-install at a certain time (not a recurring setting)
- WebAdmin Network Section Split - Now two sections; "Network" and "Network Services" for usability.
- Search Boxes Retain Data - No need to re-enter query when returning from a drill down/result click.
- System Restart Reason - Allows logging of "why was system restarted" in the notification
- Group Tool tips for Members - Easily discern Network/Service Group members without having to edit in order to view
- Reporting Exclusions - Used to remove unwanted entries from various reports (such as Google-analytics from Web Security tables
- Log Flag for NAT Rules - Similar to packet filter, tells you which NAT rule was matched as part of traffic handling
- Masquerading for Additional IP Addresses - Allows the use of Masquerading (vs. just SNAT) for additional IPs bound to an interface
- Support for Multiple Authentication Servers - The authentication server section has been redesigned to support fallback/failover in an easier format, with many usability improvements
- SNMP MIB - Downloadable via the SNMP section of WebAdmin
- Up2date Status Reworked - Clarifies the current status of a Firmware Up2date to avoid confusion regarding the availability, download progress etc...of an issued Up2date.
- Inline/Snap Report Links - Directly moves the Admin to the relevant details report when browsing the embedded daily reports located throughout WebAdmin
- Global POP3 Sender Blacklist - Quarantined as "other" in the QM/EUP
- Dashboard RSS Feed - Provides visibility to select Astaro-issued items via WebAdmin
- Other magic features, enhancements, and usability improvements
Added: 2009-05-30 License: Free for non-commerc... Price: USD290.00
13 downloads
Other version of Astaro Security Linux
Astaro Security Linux 7.404 is an integrated and easy-to-use package of ... inspection and application proxies guards Internet communications traffic in and out of thePrice: USD290.00
License:Free for non-commerc...
License:Free for non-commerc...
Astaro Corporation - Astaro Security Linux is an award-winning, unique network security solution in an integratedPrice: $290
License:Free for non-commercial use
License:Free for non-commercial use
security solution in an integrated and easy-to-use and manage package. inspection and application proxies guards Internet communications traffic in and out of thePrice: USD290.00
License:Free for non
License:Free for non
stateful packet inspection and application proxies guards Internet communications trafficPrice: $290
License:Free for non-commercial use
License:Free for non-commercial use
Price: $290
License:Free for non-commercial use
License:Free for non-commercial use
Luke Macken Security LiveCD
Luke Macken Security LiveCD provides a fully functional livecd based on Fedora for use in security auditing, forensics research. more>>
Luke Macken Security LiveCD provides a fully functional livecd based on Fedora for use in security auditing, forensics research, and penetration testing.
Main features:
- All of the security features and tools Fedora has to offer
- Features from the FedoraLiveCD
- Ability to install directly to hard drive
Spinning your own
# yum install mercurial livecd-tools
$ hg clone http://hg.lewk.org/security-livecd
# livecd-creator --config security-livecd/fedora-security-livecd.ks --fslabel=Fedora-7-Security-LiveCD
Making changes to the LiveCD is as simple as modifying the fedora-security-livecd.ks configuration file.
<<lessMain features:
- All of the security features and tools Fedora has to offer
- Features from the FedoraLiveCD
- Ability to install directly to hard drive
Spinning your own
# yum install mercurial livecd-tools
$ hg clone http://hg.lewk.org/security-livecd
# livecd-creator --config security-livecd/fedora-security-livecd.ks --fslabel=Fedora-7-Security-LiveCD
Making changes to the LiveCD is as simple as modifying the fedora-security-livecd.ks configuration file.
Download (MB)
Added: 2007-08-09 License: GPL (GNU General Public License) Price:
813 downloads
MultiAdmin Security Module 1.0.7
MultiAdmin security framework kernel module provides means to have multiple more>>
MultiAdmin security framework kernel module provides means to have multiple "root" users with unique UIDs.
This fixes collation order problems which for example appear with NSCD, allows to have files with determinable owner and allows to track the quota usage for every user, since they now have a unique uid.
MultiAdmin Security Module also implements a "sub-admin", a partially restricted root user, who has full read-only access to most subsystems, and additional write rights only to a limited subset, e.g. writing to files or killing processes only of certain users.
Enhancements:
- The NetAdmin user class has been removed since it can be handled in userspace.
- The code has been updated to work with Linux 2.6.22.
<<lessThis fixes collation order problems which for example appear with NSCD, allows to have files with determinable owner and allows to track the quota usage for every user, since they now have a unique uid.
MultiAdmin Security Module also implements a "sub-admin", a partially restricted root user, who has full read-only access to most subsystems, and additional write rights only to a limited subset, e.g. writing to files or killing processes only of certain users.
Enhancements:
- The NetAdmin user class has been removed since it can be handled in userspace.
- The code has been updated to work with Linux 2.6.22.
Download (0.020MB)
Added: 2007-08-05 License: GPL (GNU General Public License) Price:
815 downloads
Email Security through Procmail 1.151
Email Security through Procmail (the Procmail Sanitizer) provides methods to sanitize email, removing obvious exploit attempts. more>>
Email Security through Procmail (the Procmail Sanitizer) provides methods to sanitize email, removing obvious exploit attempts and disabling the channels through which exploits are delivered.
Email Security through Procmail also provides facilities for detecting and blocking Trojan Horse exploits and worms.
Enhancements:
- This release added default poisoning of the application/x-msdownload MIME type in response to a new worm.
- Full MIME-type poisoning support will be available shortly.
- This release was accelerated for security reasons.
<<lessEmail Security through Procmail also provides facilities for detecting and blocking Trojan Horse exploits and worms.
Enhancements:
- This release added default poisoning of the application/x-msdownload MIME type in response to a new worm.
- Full MIME-type poisoning support will be available shortly.
- This release was accelerated for security reasons.
Download (0.095MB)
Added: 2006-01-21 License: GPL (GNU General Public License) Price:
1373 downloads
Adeos Filesystem Security Scanner 1.0
Adeos (named after the obscure Roman goddess of modesty) is an automated filesystem security scanner. more>>
Adeos (named after the obscure Roman goddess of modesty) is an automated filesystem security scanner. It recursively walks all mounted filesystems on the local system and attempts to identify common security concerns such as SUID and world-writeable files.
The output is available as text or html, with either output type formatted in either report or list style. Text is written to stdout and is redirected to a file, while HTML is written to a file named results.html in the local directory.
Adeos should compile and run on almost any UNIX-type system. It has been tested on Sun Solaris and Linux 2.x.
Adeos must be run from a non-priveleged user account on the system. Since a priveleged account, such as root has much greater priveleges than a standard user, the results would be meaningless.
Adeos supports three scan modes: normal, verbose, and paranoid. A brief description of what each looks for is below.
normal: Set-User-ID (SUID) files, Set-Group-ID (SGID) files, world-writeable files, and world-writeable directories. (Default mode)
verbose: Everything that a Normal scan looks for, "Sticky" files, unreadable directories, and inaccessible files.
paranoid: Everything Normal and Verbose scans look for, world-readable files, world-executable files, world-readable directories, and world-executable directories.
Adeos supports the following command-line options. Note that if you want to use multiple options you must specify each one individually.
-d Include dynamic directories (/dev /devices /proc /tmp) in the scan.
-h Place output in an HTML file named results.html
-r Format output as a collated report.
--help Display usage and help information.
A default Adeos run performs a Normal mode scan with list-formatted text output.
<<lessThe output is available as text or html, with either output type formatted in either report or list style. Text is written to stdout and is redirected to a file, while HTML is written to a file named results.html in the local directory.
Adeos should compile and run on almost any UNIX-type system. It has been tested on Sun Solaris and Linux 2.x.
Adeos must be run from a non-priveleged user account on the system. Since a priveleged account, such as root has much greater priveleges than a standard user, the results would be meaningless.
Adeos supports three scan modes: normal, verbose, and paranoid. A brief description of what each looks for is below.
normal: Set-User-ID (SUID) files, Set-Group-ID (SGID) files, world-writeable files, and world-writeable directories. (Default mode)
verbose: Everything that a Normal scan looks for, "Sticky" files, unreadable directories, and inaccessible files.
paranoid: Everything Normal and Verbose scans look for, world-readable files, world-executable files, world-readable directories, and world-executable directories.
Adeos supports the following command-line options. Note that if you want to use multiple options you must specify each one individually.
-d Include dynamic directories (/dev /devices /proc /tmp) in the scan.
-h Place output in an HTML file named results.html
-r Format output as a collated report.
--help Display usage and help information.
A default Adeos run performs a Normal mode scan with list-formatted text output.
Download (0.029MB)
Added: 2006-07-13 License: GPL (GNU General Public License) Price:
1200 downloads
Local Area Security 0.5
L.A.S. is a research group focused on information security related subjects. more>>
Local Area Security is a research group focused on information security related subjects. We are most known for L.A.S. Linux. Our live-CD security toolkit.
Local Area Security is a project that was started in 2002 to research information security related topics. During that time there was no real live-CD toolkit focused on information security.
So Jascha, the project founder built one from a stripped down version of Knoppix called Model-K. Both of which were built from Debian Linux.
Up until version 0.4 L.A.S. Linux was command line only. Which made it limited to some of the tools it could contain since many require a GUI. Or at least for many it is preferable to have one. So FluxBox was added as the desktop since it is light weight and very feature filled.
It was during this time that Jascha came up with the idea of keeping the size of L.A.S. as small as possible, which lead to a target maximum size of 180MBs. The size of the original mini-CDs that were available at the time. This forced the selection of tools and features to be weighed heavily since unlike other live-CDs that throw in everything including the kitchen sink. L.A.S. was designed from the ground up to be a tool not a all-inclusive grab bag of applications.
As well as many advances for live-CDs came about, such as to-ram that allows booting a live-CD into the physical RAM of a computer. Which by chance L.A.S. was perfectly cut out for. With as little as 256MB of RAM people could boot L.A.S. and then free up their CD-ROMs for burring etc.
For forensics this was a big plus, along with many other uses. Plus L.A.S. ran very fast in RAM which helped with running Nessus, Nmap, or other tools. When compared to full size (700MB) CDs which would require 1GB of RAM to use the to-ram option, it was really no contest.
<<lessLocal Area Security is a project that was started in 2002 to research information security related topics. During that time there was no real live-CD toolkit focused on information security.
So Jascha, the project founder built one from a stripped down version of Knoppix called Model-K. Both of which were built from Debian Linux.
Up until version 0.4 L.A.S. Linux was command line only. Which made it limited to some of the tools it could contain since many require a GUI. Or at least for many it is preferable to have one. So FluxBox was added as the desktop since it is light weight and very feature filled.
It was during this time that Jascha came up with the idea of keeping the size of L.A.S. as small as possible, which lead to a target maximum size of 180MBs. The size of the original mini-CDs that were available at the time. This forced the selection of tools and features to be weighed heavily since unlike other live-CDs that throw in everything including the kitchen sink. L.A.S. was designed from the ground up to be a tool not a all-inclusive grab bag of applications.
As well as many advances for live-CDs came about, such as to-ram that allows booting a live-CD into the physical RAM of a computer. Which by chance L.A.S. was perfectly cut out for. With as little as 256MB of RAM people could boot L.A.S. and then free up their CD-ROMs for burring etc.
For forensics this was a big plus, along with many other uses. Plus L.A.S. ran very fast in RAM which helped with running Nessus, Nmap, or other tools. When compared to full size (700MB) CDs which would require 1GB of RAM to use the to-ram option, it was really no contest.
Download (210MB)
Added: 2005-11-09 License: GPL (GNU General Public License) Price:
840 downloads
Security Officers Best Friend 25032007
Security Officers Best Friend (SOBF) is a Security Management and Analysis tool designed to be placed right ontop the SOMAP.org. more>>
Security Officers Best Friend (SOBF) is a Security Management and Analysis tool designed to be placed right ontop the SOMAP.org Repository. The SOBF Tool is currently in development and there is no public download at the moment.
Architecture:
The SOBF tool is written in Java. To run the SOBF Tool you need a Java VM version 1.5 or later. The data used within the tool is stored locally and can be protected accordingly.
It is a main goal to build the tool like an extendable toolset. While all the needed functionality is built into the SOBF tool, it is possible to extend that standard feature set with your own scripts and extentions.
Data Abstraction:
To abstract the database and to access the data more easily the SOBF tool makes use of the Cayenne Framework. The configuration informations are accessible and it is possible to enhance that configuration with your own data views. Such data views can then be used from within your own scripts to enhance the feature set of the SOBF tool.
Database / Storage:
The SOBF Tool currently uses the hsqldb Database engine to store the data. Updates to the Repository can be done without a hassle for the data records are identified by UUIDs as described on the Repositories information page.
The hsqldb stores the data in human readable form. If need be, the data can be extracted from the filesystem accessing the data files directly.
Since the SOBF tool uses the Cayenne Framework to abstract the database layer it is no problem to exchange the hsqldb with any other database system like Derby or PostgreSQL in future releases. This is an important feature for the SOBF tool should help a security officer with his work and not stand in his way. For this reason the SOBF tool should be as integratable into an environment as possible.
Reporting:
We use the Jasper Reports engine to render and print reports
Enhancements:
- This version contains the implementation of the complete Risk Assessment Workflow as described in the SOMAP.org Guide.
- The backup and restore mechanism was enhanced.
- Some changes and updates were made to the Dynamic Reports.
- The application experienced a general spring cleaning.
<<lessArchitecture:
The SOBF tool is written in Java. To run the SOBF Tool you need a Java VM version 1.5 or later. The data used within the tool is stored locally and can be protected accordingly.
It is a main goal to build the tool like an extendable toolset. While all the needed functionality is built into the SOBF tool, it is possible to extend that standard feature set with your own scripts and extentions.
Data Abstraction:
To abstract the database and to access the data more easily the SOBF tool makes use of the Cayenne Framework. The configuration informations are accessible and it is possible to enhance that configuration with your own data views. Such data views can then be used from within your own scripts to enhance the feature set of the SOBF tool.
Database / Storage:
The SOBF Tool currently uses the hsqldb Database engine to store the data. Updates to the Repository can be done without a hassle for the data records are identified by UUIDs as described on the Repositories information page.
The hsqldb stores the data in human readable form. If need be, the data can be extracted from the filesystem accessing the data files directly.
Since the SOBF tool uses the Cayenne Framework to abstract the database layer it is no problem to exchange the hsqldb with any other database system like Derby or PostgreSQL in future releases. This is an important feature for the SOBF tool should help a security officer with his work and not stand in his way. For this reason the SOBF tool should be as integratable into an environment as possible.
Reporting:
We use the Jasper Reports engine to render and print reports
Enhancements:
- This version contains the implementation of the complete Risk Assessment Workflow as described in the SOMAP.org Guide.
- The backup and restore mechanism was enhanced.
- Some changes and updates were made to the Dynamic Reports.
- The application experienced a general spring cleaning.
Download (14.6MB)
Added: 2007-03-25 License: GPL (GNU General Public License) Price:
943 downloads
Other version of Security Officers Best Friend
informations with a concrete inventory to help the security officer in analyzing and managing ... from the SOBF Tool a security officer can generate reports about situations, gaps, protectionLicense:GPL (GNU General Public License)
Program Guard 0.7.0
Program Guard allows the user of a Linux workstation to specify which application programs that are allowed TCP/IP connections. more>>
Program Guard allows the user of a Linux workstation to specify which application programs that are allowed TCP/IP connections to the Internet (Internet addresses are defined as any IP address not in the range of 10.0.0.0/24 or 192.168.0.0/16).
The application program names can be specified by listing them in a file (Static Mode) by querying the user (Query Mode). In Query Mode, when a program that is unknown to Program Guard attempts to access an Internet IP address, Program Guard displays the Program Guard Dialog Box.
In addition to providing connection information, this dialog box gives the workstation user the option of allowing the program to access the Internet or to be blocked from accessing the Internet. This can be done either for the current instance of the program or for this and all future instances of the program (Make Persistent checkbox).
Currently, the program names that are allowed or denied Internet access apply to all users of the workstation rather than on a per user basis. For example, if Program Guard is running in Query Mode and user A invokes a program previously blocked from Internet access by user B, the program will be blocked from Internet access for User A as well.
Connections blocked by Program Guard are logged to the Program Guard log file pgrd.log. It is located in the /var/log/pgrd directory. If desired, Program Guard can be configured to log all Internet connection attempts rather than just those that have been blocked.
Program Guard was tested on Fedora Core 1 and Fedora Core 3 on single processor 32 bit X86 Intel processors. It has not been tested on other distributions or on multi-processor machines. While it works on Fedora Core 1, it will not build on a standard Linux 2.4.x kernel due to task_struct definitions that were not made until Linux 2.6. If there is enough interest, a version that runs under a standard Linux 2.4 kernel may be made available.
To run in Query Mode, Gnome 2.x and Glade 2.x are required. There are no prerequisites for Static Mode.
Installation:
Program Guard consists of three components: a kernel module; a daemon; and a Gnome GUI user interface component. All files needed to build the components are in the pgrd.tgz file. An installation shell script install-pgrd is provided for Fedora distributions.
It will build/install (or remove) the kernel module and daemon as well as configure them to be started automatically when the system is booted. To invoke it, type install-pgrd < install | remove >. This script may or may not be useable as is for other Linux distributions.
If you modify the install script, please note that the module, daemon and various support files must be installed in the /opt/pgrd directory for Program Guard to work properly (this is already handled when using the install script as provided). To run in Query Mode, each user must be configured by invoking the install-pgrd_user < username > script. And by going to the Preferences->More Preferences->Sessions selection in the Fedora Main Menu and adding pgrdgui to the Startup Programs tab.
Program Guard will be started the next time the machine is rebooted. If you do not wish to reboot, you may start Program Guard manually as described below in Manual Starting And Stopping. Note: If starting manually and using Query Mode, once the daemon and kernel module are started, make sure that you log out and log back in.
<<lessThe application program names can be specified by listing them in a file (Static Mode) by querying the user (Query Mode). In Query Mode, when a program that is unknown to Program Guard attempts to access an Internet IP address, Program Guard displays the Program Guard Dialog Box.
In addition to providing connection information, this dialog box gives the workstation user the option of allowing the program to access the Internet or to be blocked from accessing the Internet. This can be done either for the current instance of the program or for this and all future instances of the program (Make Persistent checkbox).
Currently, the program names that are allowed or denied Internet access apply to all users of the workstation rather than on a per user basis. For example, if Program Guard is running in Query Mode and user A invokes a program previously blocked from Internet access by user B, the program will be blocked from Internet access for User A as well.
Connections blocked by Program Guard are logged to the Program Guard log file pgrd.log. It is located in the /var/log/pgrd directory. If desired, Program Guard can be configured to log all Internet connection attempts rather than just those that have been blocked.
Program Guard was tested on Fedora Core 1 and Fedora Core 3 on single processor 32 bit X86 Intel processors. It has not been tested on other distributions or on multi-processor machines. While it works on Fedora Core 1, it will not build on a standard Linux 2.4.x kernel due to task_struct definitions that were not made until Linux 2.6. If there is enough interest, a version that runs under a standard Linux 2.4 kernel may be made available.
To run in Query Mode, Gnome 2.x and Glade 2.x are required. There are no prerequisites for Static Mode.
Installation:
Program Guard consists of three components: a kernel module; a daemon; and a Gnome GUI user interface component. All files needed to build the components are in the pgrd.tgz file. An installation shell script install-pgrd is provided for Fedora distributions.
It will build/install (or remove) the kernel module and daemon as well as configure them to be started automatically when the system is booted. To invoke it, type install-pgrd < install | remove >. This script may or may not be useable as is for other Linux distributions.
If you modify the install script, please note that the module, daemon and various support files must be installed in the /opt/pgrd directory for Program Guard to work properly (this is already handled when using the install script as provided). To run in Query Mode, each user must be configured by invoking the install-pgrd_user < username > script. And by going to the Preferences->More Preferences->Sessions selection in the Fedora Main Menu and adding pgrdgui to the Startup Programs tab.
Program Guard will be started the next time the machine is rebooted. If you do not wish to reboot, you may start Program Guard manually as described below in Manual Starting And Stopping. Note: If starting manually and using Query Mode, once the daemon and kernel module are started, make sure that you log out and log back in.
Download (0.33MB)
Added: 2006-01-06 License: GPL (GNU General Public License) Price:
1388 downloads
Auditor Security Linux 200605
The Auditor Security Linux is a live CD based on Knoppix. more>>
The Auditor security collection is a Live-System based on KNOPPIX. With no installation whatsoever, the analysis platform is started directly from the CD-Rom and is fully accessible within minutes.
Independent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier. Even during the planning and development stages, our target was to achieve an excellent user-friendliness combined with an optimal toolset.
Professional open-source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking).
By this means, you instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly developed or converted from other system platforms, in order to make as many current auditing tools available as possible on one CD-ROM.
Tools like Wellenreiter and Kismet were equipped with an automatic hardware identification, thus avoiding irritating and annoying configuration of the wireless cards.
Enhancements:
New & Updated tools:
- proxychains 1-8-1 (for example scanning over proxy more easy)
- yersinia-0.5.4
- kismet-logfile-viewer klv.pl and klc.pl
- ntp fingerprinting tool
- tftp bruteforce tool
- snmp fuzzer
- cisco torch 0.4b
- unicornscan 0.4.2
- packit
- sendip
- nasl 2.2.4
- tcpick
- cryptcat
- amap version 4.8
- tcpsplit
- Ethereal version 10.11
- ettercap-ng-0.72 and modified the etter.conf
- replaced tinysnmp with snmp tools
- vnc2swf /usr/X11R6/bin/recordwin and vnc2swf
- edit_vnc2swf.py
- edit_mp3.py
- wpa-supplicatiant 0.3.8
- hostapd-utils 0.3.7
- ssldump
- fragrouter
- Metasploit 2.4 including all known updates
- airsnarf, but no menu at moment
- fakeap to /opt/auditor but no menu entry at moment, need to write a shell script
- dsniff 2.4b1-10
- nessus plugins updated
- exploit tree updated
- Snort 2.3.2-5
- Bleeding-edge rules for snort
- New aircrack
- New airsnort
- Bet i forgot some to mention.
New & updated drivers:
- rt2400 linux drivers and utils (untested)
- rtl8180 driver (8180_26_private.ko and open8180.ko and /usr/local/bin/wlanup and /usr/local/bin/wlandown) (Untested)
- hostap drivers 0.3.7
- ipw2100 & ipw2200 incl firmware, incl monitor mode
- Prism54 with injection patch
- Linux-wlan-ng with injection patch
- Madwifi with injection patch
- ACX drivers are back on cd
Addons:
- Default password list has been updated
- Added some changes to the network stack using /etc/sysctl.conf, which will be called from knoppix-autoconfig script
- New background image
Some fixes i remember:
- Kernel completely rebuilded to provide full functionality
- Isolinux now accepts bootparameters again
- USB drivers are back to /dev/sda and booting from stick works fine
- grub files have been fixed
- fixed hostname /etc/hosts
- /cdrom/index.html pointed to the old forum fixed that
- Added cardctl eject, cardctl insert into switch-to-XY scripts
- Fixed the homebutton of the konquerror when clicked first time
- Fixed the menuentry for nessus
<<lessIndependent of the hardware in use, the Auditor security collection offers a standardised working environment, so that the build-up of know-how and remote support is made easier. Even during the planning and development stages, our target was to achieve an excellent user-friendliness combined with an optimal toolset.
Professional open-source programs offer you a complete toolset to analyse your safety, byte for byte. In order to become quickly proficient within the Auditor security collection, the menu structure is supported by recognised phases of a security check. (Foot-printing, analysis, scanning, wireless, brute-forcing, cracking).
By this means, you instinctively find the right tool for the appropriate task. In addition to the approx. 300 tools, the Auditor security collection contains further background information regarding the standard configuration and passwords, as well as word lists from many different areas and languages with approx. 64 million entries.
Current productivity tools such as web browser, editors and graphic tools allow you to create or edit texts and pictures for reports, directly within the Auditor security platform. Many tools were adapted, newly developed or converted from other system platforms, in order to make as many current auditing tools available as possible on one CD-ROM.
Tools like Wellenreiter and Kismet were equipped with an automatic hardware identification, thus avoiding irritating and annoying configuration of the wireless cards.
Enhancements:
New & Updated tools:
- proxychains 1-8-1 (for example scanning over proxy more easy)
- yersinia-0.5.4
- kismet-logfile-viewer klv.pl and klc.pl
- ntp fingerprinting tool
- tftp bruteforce tool
- snmp fuzzer
- cisco torch 0.4b
- unicornscan 0.4.2
- packit
- sendip
- nasl 2.2.4
- tcpick
- cryptcat
- amap version 4.8
- tcpsplit
- Ethereal version 10.11
- ettercap-ng-0.72 and modified the etter.conf
- replaced tinysnmp with snmp tools
- vnc2swf /usr/X11R6/bin/recordwin and vnc2swf
- edit_vnc2swf.py
- edit_mp3.py
- wpa-supplicatiant 0.3.8
- hostapd-utils 0.3.7
- ssldump
- fragrouter
- Metasploit 2.4 including all known updates
- airsnarf, but no menu at moment
- fakeap to /opt/auditor but no menu entry at moment, need to write a shell script
- dsniff 2.4b1-10
- nessus plugins updated
- exploit tree updated
- Snort 2.3.2-5
- Bleeding-edge rules for snort
- New aircrack
- New airsnort
- Bet i forgot some to mention.
New & updated drivers:
- rt2400 linux drivers and utils (untested)
- rtl8180 driver (8180_26_private.ko and open8180.ko and /usr/local/bin/wlanup and /usr/local/bin/wlandown) (Untested)
- hostap drivers 0.3.7
- ipw2100 & ipw2200 incl firmware, incl monitor mode
- Prism54 with injection patch
- Linux-wlan-ng with injection patch
- Madwifi with injection patch
- ACX drivers are back on cd
Addons:
- Default password list has been updated
- Added some changes to the network stack using /etc/sysctl.conf, which will be called from knoppix-autoconfig script
- New background image
Some fixes i remember:
- Kernel completely rebuilded to provide full functionality
- Isolinux now accepts bootparameters again
- USB drivers are back to /dev/sda and booting from stick works fine
- grub files have been fixed
- fixed hostname /etc/hosts
- /cdrom/index.html pointed to the old forum fixed that
- Added cardctl eject, cardctl insert into switch-to-XY scripts
- Fixed the homebutton of the konquerror when clicked first time
- Fixed the menuentry for nessus
Download (645MB)
Added: 2005-06-22 License: GPL (GNU General Public License) Price:
1131 downloads
Devolution Security 3.0.6
Devolution Security is a video surveillance system for Linux based systems. more>>
Devolution Security is a video surveillance system for Linux based systems. It supports up to 16 cameras and features unicast and multicast broadcasting, a Web interface, an X11 interface, themes, motion detection, record on motion, eight different camera layouts, camera cycling, fullscreen mode, and more. Devolution Security uses its own toolkit (dtk).
Main features:
- Up to 16 cameras
- Motion detection
- Record on motion detection
- Record up to 25 fps mpeg4 video
- Multicast live streams to local network
- Unicast to internet IP address
- Very configurable
- Themeable X11 interface
- Web based interface
<<lessMain features:
- Up to 16 cameras
- Motion detection
- Record on motion detection
- Record up to 25 fps mpeg4 video
- Multicast live streams to local network
- Unicast to internet IP address
- Very configurable
- Themeable X11 interface
- Web based interface
Download (10MB)
Added: 2005-10-26 License: GPL (GNU General Public License) Price:
1486 downloads
Secleted [ 0 ] software to compare
Copyright Notice:
Software piracy is theft, Using crack, password, serial numbers, registration codes, key generators is illegal and prevent future software development. The above security guard fight search only lists software in full, demo and trial versions for free download. Download links are directly from our mirror sites or publisher sites, torrent files or links from rapidshare.com, yousendit.com or megaupload.com are not allowed
