Ipfw-graph displays a graphical overview of the amount of bytes going through your FreeBSD ipfw-rules and a piled overview of the percentage based on which rule it happened.
445cc53409fdf516cf5fb1af20253331265a2fdc9e36c81458fa9389da3fcaca
Ethereal is a GTK+-based network protocol analyzer, or sniffer, that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and to give Ethereal features that are missing from closed-source sniffers. Screenshot available here.
41665c8dc7ea0746a504ecf19cc4a77f307fed8ffc8c1d1bac3d4b2a19710780
Incident.pl is a small script which, when given syslogs generated by snort or other tools, can generate an incident report for events that appear to be attempted security attacks, gather information on the remote host, and report the attack to the appropriate administrators.
f3d2808aedba283d932feccb92c56fc6400bf41a09006aa8dab2182362aec3ca
Firewall Builder consists of object-oriented GUI and set of policy compilers for various firewall platforms. In Firewall Builder, firewall policy is a set of rules, each rule consists of abstract objects which represent real network objects and services (hosts, routers, firewalls, networks, protocols). Firewall Builder helps user maintain database of objects and allows policy editing using simple drag-and-drop operations. Firewall Builder can be used to manage firewalls built on variety of platforms including, but not limited to, Linux running iptables and FreeBSD or Solaris running ipfilter.
56427fb7fe0bb13b185e6ab52a016f4c7ec66424a49639c32ffc4708631d711a
Netdude is the NETwork DUmp data Displayer and Editor for tcpdump tracefiles. It is a GUI-based tool that allows you to make detailed changes to packets in tcpdump tracefiles. It can set the value of every field in IP, TCP, and UDP packet headers, copy, move, and delete packets in the tracefile, and fragment and reassemble IP packets. Netdude addresses the need for a tool that allows developers of networking code to easily create specific traffic patterns in order to test features of their software. Tested on Linux and FreeBSD.
f34961b4787080babac787618b4f2457859ed5b6ef94719455a03419aec8131a
SPIKE is an attempt to write an easy to use generic protocol API that helps reverse engineer new and unknown network protocols. It features several working examples. Includes a web server NTLM Authentication brute forcer and example code that parses web applications and DCE-RPC (MSRPC).
7e69f5a7ea1c2db4f13b9a857608b55c2483d9a7cac5201fa6c77932596fff0e
Sharefuzz is a shared library which automatically detects environment variable overflows in Unix systems. This tool can be used to ensure all necessary patches have been applied, or as a reverse engineering tool.
0480a8b835c431bca82601dd41dc51c21bcc45bbe1255266dc0b363224021c64
Dcetest is a tool which probes a windows machine over TCP port 135, MSRPC endpoint information. It can be though of as the equivalent of rpcinfo -p against a Windows box. Dcetest can also be very useful once inside a DMZ to fingerprint Windows machines on the network.
ffbb04526ee0bf44a9473b3dcc612da556022d5a3544d152f88fba267258ba75
mod_ssl provides provides strong cryptography for the Apache 1.3 webserver via the Secure Sockets Layer (SSL v2/v3) and Transport Layer Security (TLS v1). It is based on the SSL/TLS toolkit OpenSSL and supports all SSL/TLS related functionality, including RSA and DSA/DH cipher support, X.509 CRL checking, etc. Additionally it provides special Apache related facilities like DBM and shared memory based inter-process SSL session caching. per-URL SSL session renegotiations, DSO support, etc.
258d6de5c22c0dd6882ba379b29ecf97f133631f9c1b14f950ae016c6034b098
Apache is the most popular webserver on the Internet, quite possibly the best in terms of security, functionality, efficiency, and speed.
a62d1ce96e01b798f8d6ef33269508e96d8d8149f2d068dcc212d1697a82d06d