arpalert uses ARP address monitoring to help prevent unauthorized connections on the local network. If an illegal connection is detected, a program or script is launched, which could be used to send an alert message, for example.
d2431642764a325343e7d71db137169c
Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. It also enables software developers to create new communication tools with built-in privacy features. It provides the foundation for a range of applications that allow organizations and individuals to share information over public networks without compromising their privacy. Individuals can use it to keep remote Websites from tracking them and their family members. They can also use it to connect to resources such as news sites or instant messaging services that are blocked by their local Internet service providers (ISPs).
8f4fea2631f5f8c973cff6700960b937
NessusWC provides a simple HTTP Web interface to the Nessus Security Scanner. It connects to local or remote Nessus version 2 daemons via SSL (using OpenSSL libraries), retrieves the plugins, configures a scan for a single target host, and saves the results in HTML format. As a result, even users with limited security knowledge can scan their machines. Scan results are stored in a central place.
ca5f37cc0b86ee861a80ed1189ea7c37
Snare for Squid provides a remote distribution facility for Squid proxy server logs, and is known to run on most Unix variations, including Linux, Solaris, AIX, Tru64, and Irix. Snare for Squid can be used to send data to either a remote or local SYSLOG server, or the Snare Server for centralized collection, analysis, and archival.
d757c89e24ed354d7633893b8d607f93
Snare for Apache provides a remote distribution facility for Apache Web server logs. It is known to run on most Unix variations, including Linux, Solaris, AIX, Tru64, and Irix. Snare for Apache can be used to send data to either a remote or local SYSLOG server, or the Snare Server for centralized collection, analysis, and archival.
8c1cb82d5696977ffde02e978004e149
SID is a Shell Intrusion Detection system. The kernel part plugs into a terminal-processing subsystem and logs hashed terminal lines. The user part reads log entries (hashes), consults a list of allowed entries, and takes appropriate action upon unexpected log entries. Currently supported are Solaris and Linux.
970cdce20fc74a60d5923f6f39fcc519
Weplab is a tool to review the security of WEP encryption in wireless networks from an educational point of view. Several attacks are available, so it can measure the effectiveness and minimum requirements of each one. Currently, weplab supports several methods, and it is able to crack the WEP key from 600,000 encrypted packets.
713870965447b0b8b7341409968846fb
Debian Security Advisory DSA 762-1 - Kevin Finisterre discovered two problems in the Bluetooth FTP client from affix, user space utilities for the Affix Bluetooth protocol stack.
3c9db1186cec0f4c04005e4738214fdd
Debian Security Advisory DSA 761-1 - Eric Romang discovered several insecure temporary file creations in heartbeat, the subsystem for High-Availability Linux.
cf9fd19daad569f1d47ca207ad1120f5
Netdiscover is an active and passive address reconnaissance tool that can detect or search for online hosts by actively sending arp requests. Linux version.
02b1ab16162c81dd4ea5ac62acfa4773
Race Driver versions 1.20 and below suffer from multiple misuses of sprintf().
d2e720561cc7df7c2ca8222adf0ccc8e
Multiple remote vulnerabilities exist in ALT-N MDaemon's imapd that include two denial of service vulnerabilities and a buffer overflow in the CREATE statement.
01134c83cdacabe9dc7b4bf0e10e48ee
Interesting write up regarding the faulty logic of using NTLM HTTP authentication and how it does not mix well with HTTP proxies.
0da67587751762cebd0c64d797eaf2ef
HP Security Bulletin - Several potential security vulnerabilities have been identified in the HP Tru64 UNIX TCP/IP including ICMP, and Initial Sequence Number generation (ISNs). These exploits could result in a remote Denial of Service (DoS) from network throughput reduction for TCP connections, the reset of TCP connections, or TCP spoofing.
cf012e700b07b6fc00d58fa21c3ba41c
A design flaw in MRV's In-Reach console servers versions LX-8000, 4000, and 1000 series allow users to bypass port access controls when ssh public-key authentication is enabled.
e9de2cd3593fb6688e195ab613cb2411
KDE Security Advisory: Kate / Kwrite create a file backup before saving a modified file. These backup files are created with default permissions, even if the original file had more strict permissions set. Depending on the system security settings, backup files might be readable by other users. All maintained versions of Kate and Kwrite as shipped with KDE 3.2.x up to including 3.4.0. KDE 3.1.x and older and KDE 3.4.1 and newer are not affected.
f7346e280ce9a768445fd5983b052faf
Debian Security Advisory DSA 759-1 - A vulnerability has been discovered in phppgadmin, a set of PHP scripts to administrate PostgreSQL over the WWW, that can lead to disclose sensitive information. Successful exploitation requires that magic_quotes_gpc is disabled.
b0cbd8c8ef92f6ba93998b4ea46d8d6b
Gentoo Linux Security Advisory GLSA 200507-17 - Several vulnerabilities in Mozilla Thunderbird allow attacks ranging from execution of script code with elevated privileges to information leak. Versions less than 1.0.5 are affected.
0a63346ec652a62550b6b040f406b571
Debian Security Advisory DSA 758-1 - A buffer overflow has been discovered in the telnet server from Heimdal, a free implementation of Kerberos 5, that could lead to the execution of arbitrary code.
9561fca84626eeb926df28b6c7164c6f
Shorewall Firewall versions 2.2.x and 2.4.x allow any client to bypass any rule as long as they are accepted by the MAC filter.
a701d2ad017c8c94fdbed28df957d88f
Secunia Security Advisory - A vulnerability has been reported in PHPFinance, which can be exploited by malicious people to bypass certain security restrictions.
df3a14a3c3417fe9c38e6b0a2de3a4a5
Secunia Security Advisory - rgod has reported a vulnerability in SEO-Board, which can be exploited by malicious people to conduct cross-site scripting attacks.
02135f296e92ef3f5645d6ed5c967339
Secunia Security Advisory - A security issue has been reported in Shorewall, which can be exploited by malicious people to bypass certain security restrictions.
95c6cdbfe0c2e11c31513e1cb93ab33f
Secunia Security Advisory - sky has discovered a vulnerability in CaLogic, which can be exploited by malicious people to compromise a vulnerable system.
5b5243dbd8c36a80861c6e0076e6d061
Secunia Security Advisory - Luigi Auriemma has reported two vulnerabilities in Race Driver, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise a vulnerable system.
f7157c77c92bbbb6165b103f336f687d