軟體列表

upgverify is a wrapper around PGP (versions 2 and
5) and GPG, designed to be used inside .qmail files
but also usable outside of qmail. It deals with MIME
(RFC 2015) and non-MIME emails, and makes it
easy to set up email robots/gateways with PGP
authentication.

Nift (Network Intrusion Footprinting Tool) is
graphical frontend (written in GTK+) for
footprinting tools and methods already freely
avaliable. Its purpose is to aid sysadmins in
securing their site by allowing them to quickly
check their network to see how much data can be
gained by an attacker and used towards cracking
their systems.

FrazierWall Linux is a single floppy distribution Linux firewall that is based on the Linux Router Project. It is designed for use with ethernet base internet connections (such as cable modems or xDSL lines). It allows you to share such a connection with several other computers on a LAN. It is easy to setup and maintain, and is available in a Linux configurable software version.

iPasswordSafe is a password manager that facilitates the storing and retrieval of passwords from a variety of open file formats while providing a user interface consistent with Apple's guidelines.

Echoart responds to or drops ICMP echo request
packets based on a pre-defined sequence, and
could be used to return crude ASCII art in
response to pings from a Cisco router. It works
by intercepting ICMP echo request packets and
consulting a pattern template to determine
whether or not to respond to a specific echo
request. It then uses libnet to inject responses
back into the network as necessary.

Oink is a collaboration of backends for the Elsa C
and C++ frontend. It aims to be
industrial-strength for immediate utility in
finding bugs, extensible for ease in adding
backends, and composable for ease in combining
existing ones. It computes expression-level and
type-level data flow, and statement-level
intra-procedural control flow (by delegating to
Elsa). It's easy to get started by using the two
demo backends that print graphs of these flows. It
also comes with a client of the data flow analysis
that does type qualifier inference: Cqual++, a
C/C++ frontend for Cqual. Whole-program analyses
may be attempted using the linker imitator.

Medusa DS9 is used to increase Linux's security. It consists of two major parts, Linux kernel changes and the user-space daemon. Kernel changes do the monitoring of syscalls, filesystem actions, and processes, and they implement the communication protocol. The security daemon communicates with the kernel using the character device to send and receive packets. It contains the whole logic and implements the concrete security policy. That means that Medusa can implement any model of data protection; it depends only on configuration file, which is in fact a program in the internal programming language, somewhat similiar to C.

PAM Sessionrun is a PAM module that can run a
script at the start and end of a PAM session. The
script is provided the username and password (if
available) of the user and can be used for any
number of things such as auto-mounting drives,
preventing access to a system by the return value
of a script, and caching passwords for use in
printing.

elf is a command-line tool that allows a user (be it a script or
a human) to analyze the contents of an ELF object file
header. This header contains various integral values such
as the virtual entry point of the object file, the machine
architecture it was compiled for and more.

Pam_p11 is a pluggable authentication module (PAM)
package for using cryptographic tokens such as
smart cards and USB crypto tokens for
authentication. Pam_p11 is very simple, as it has
no config file, no options other than the PKCS#11
module file, and does not know about certificate
chains, certificate authorities, revocation lists,
or OCSP. There is one module that uses the
$HOME/.eid/authorized_certificates file (like the
old pam_opensc did) and one module that uses the
$HOME/.ssh/authorized_keys file (like ssh does).

w3bfukk0r is a forced browsing tool which scans
Web servers for a directory by using the HTTP HEAD
command and a brute force mechanism based on a
word list. It supports HTTP and HTTPS, does banner
grabbing, and allows User-Agent faking.

Watchdog is a tool designed to monitor IT
services. It checks at regular intervals whether a
list of services is still alive. The services
supported are HTTP, FTP, SNMP services, Oracle
databases, MySQL databases, Sybase databases, and
MS SQL Server databases.

libsodium is an easy-to-use crypto library.

Its goal is to provide all of the core operations needed to build higher-level cryptographic
tools.

It is a portable,
cross-compilable,
installable,
packageable library based on NaCl,
with a compatible API.

Crypt::Rijndael is an XS-based implementation of the algorithm for the Advanced Encryption Standard, Rijndael. The main Rijndael code is in C, as is the code that applies the modes of operation, making it reasonably fast.

Webtunnel is a network utility that encapsulates arbitrary data in HTTP and transmits it through a Web server. In that regard, it is similar to httptunnel. However, its server component runs in the context of a Web server as a CGI application (with optional FastCGI support), so it does not need its own port. It supports most things that the Web server supports, such as authentication, HTTP 1.1, HTTPS, and client certificates. It uses simple requests and responses so it works seamlessly through forward and reverse proxies.