Showing 1 - 3 of 3

Files Date: 2007-03-04

psad-2.0.5.tar.gz: Posted Mar 4, 2007; Site cipherdyne.org; Port Scan Attack Detector (psad) is a collection of four lightweight daemons written in Perl and C that are designed to work with Linux firewalling code (iptables and ipchains) to detect port scans. It features a set of highly configurable danger thresholds (with sensible defaults provided), verbose alert messages that include the source, destination, scanned port range, begin and end times, TCP flags and corresponding nmap options, email alerting, and automatic blocking of offending IP addresses via dynamic configuration of ipchains/iptables firewall rulesets. In addition, for the 2.4.x kernels psad incorporates many of the TCP, UDP, and ICMP signatures included in Snort to detect highly suspect scans for various backdoor programs (e.g. EvilFTP, GirlFriend, SubSeven), DDoS tools (mstream, shaft), and advanced port scans (syn, fin, Xmas) which are easily leveraged against a machine via nmap. Psad also uses packet TTL, IP id, TOS, and TCP window sizes to passively fingerprint the remote operating system from which scans originate. Changelog available here.; Changes: Bug fixes and some cool new features.; tags | remote, kernel, udp, perl, tcp; systems | linux; SHA-256 | ec3dca8cf70f0e310a22325a33557bd2bf197b958d18dce5c3e73f7bd5ab0e25; Download | Favorite | View

xlcrack-1.2.tar.gz: Posted Mar 4, 2007; Authored by Nick Lamb | Site devel.tlrmx.org; Xlcrack is a small tool to recover lost and forgotten passwords from XLS files. Works on most Un*x systems, but it needs libgsf, most commonly installed along with Gnumeric. Some newer XLS files are not suitable for password recovery using this software - works on Excel 95 and older.; Changes: Added better support for non-ascii characters, fixed bugs and updated homepage.; tags | cracker; SHA-256 | ad01be3262726d94774f519ffb920a925abe95c483d05105b596c372cc13dcf5; Download | Favorite | View

modsecurity-apache_2.1.0.tar.gz: Posted Mar 4, 2007; Site modsecurity.org; Mod Security is an intrusion detection and prevention engine for Web applications which operates as an Apache module or Java Servlet filter. Its purpose is to increase Web application security, protecting Web applications from known and unknown attacks. It is flexible and easy to configure, monitors HTTP traffic (including POST payload), enhances logging, performs automatic built-in checks, and simultaneously allows administrators to create custom rules for their individual needs.; Changes: Improved performance and reduced memory consumption (200% improvement). Includes the generic Web application security rules from the Core Rules project. The manual has been extensively improved.; tags | java, web; SHA-256 | fd37d64f7ffe193101da20f6e6e2016105de62948f3976aceaa96f636606fe74; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days