The ssh library was designed to be used by programmers needing a working SSH
implementation by the mean of a library. The complete control of the client is
made by the programmer. With libssh, you can remotely execute programs, transfer
files, use a secure and transparent tunnel for your remote programs.
With its Secure FTP implementation, you can play with remote files easily,
without third-party programs others than libcrypto (from openssl).
libssh features:
* Full C library functions for manipulating a client-side SSH connection
* SSH2 and SSH1 protocol compliant
* Fully configurable sessions
* Server support, SSH agent authentication support
* Support for AES-128, AES-192, AES-256, Blowfish, 3DES in CBC mode
* Use multiple SSH connections in a same process, at same time
* Use multiple channels in the same connection
* Thread safety when using different sessions at same time
* POSIX-like SFTP implementation with openssh extension support
* SCP implementation
* RSA and DSS server public key supported
* Compression support (with zlib)
* Public key (RSA and DSS), password and keyboard-interactive authentication
libssh2 is a client-side C library implementing the SSH2 protocol. It supports
regular terminal, SCP and SFTP sessions; port forwarding; password, key-based
and keyboard-interactive authentication.
Maia Mailguard is a web-based interface and management system based on the
popular amavisd-new e-mail scanner and SpamAssassin. Written in Perl and PHP,
Maia Mailguard gives end-users control over how their mail is processed by
virus scanners and spam filters, while giving mail administrators the power
to configure site-wide defaults and limits.
Search data on a harddisk/partition/file, extract the part you are interested
in, and write it back after you modified it.
PeerSec Networks MatrixSSL is an embedded SSL implementation designed for
small footprint applications and devices. PeerSec Networks offers a fully
supported, commercial version as well as an open source version that is
available for download.
See the description for ports/security/nessus.
Nessus is a security scanner. That is, it's a program which will scan a
given network and will seek for vulnerabilities which could be exploited
by some remote intruder.
The Nessus Project was originally started by Renaud Deraison
(deraison@worldnet.fr). Many people contributed in many ways to the
project, and the Nessus core team is now made up of Alexis de Bernis
(alexisb@mygale.org), who is the Java specialist, Noam Rathaus
(dolittle@isrealmail.com) who is in charge of the Nessus client for
Windows, and Renaud Deraison who is still here and who is the project
leader.
Nessus is a security scanner that crawls across a network, looking
for well-known vulnerabilities and common misconfiguration.
It has a unique set of features, including automatic SSL discovery,
services recognition (so it will catch, for instance, a FTP server
running on a port different than 21) and its own scripting language.
The Nessus Security Scanner is released under the GNU General Public
Licence and aims to be easy to use while extremely powerful.
PS: To install the lot in one operation, do nessus-plugins first.
Firewall Builder consists of object-oriented GUI and set of policy compilers
for various firewall platforms. In Firewall Builder, firewall policy is a set
of rules, each rule consists of abstract objects which represent real network
objects and services (hosts, routers, firewalls, networks, protocols).
Firewall Builder helps user maintain database of objects and allows policy
editing using simple drag-and-drop operations.
Preferences and objects databases are stored in XML format.
GUI and policy compilers are completely independent. Support for a new firewall
platform can be added to GUI without any changes done to the program, although
new policy compiler must be written. This provides for consistent abstract
model and the same GUI for different firewall platforms. Currently three most
popular free firewalls are supported: ipchains, iptables and ipfilter.
Because of this, Firewall Builder can be used to manage firewalls built on
variety of platforms including, but not limited to, Linux running ipchains or
iptables and FreeBSD or Solaris running ipfilter.
OpenCDK - Open Crypto Development Kit
This library provides basic parts of the OpenPGP message format.
The aim of the library is *not* to replace any available OpenPGP version.
There will be no real support for key management (sign, revoke,
alter preferences, ...) and some other parts are only rudimentary
available. The main purpose is to handle and understand OpenPGP
packets and to use basic operations. For example to encrypt/decrypt
or to sign/verify and packet routines.
Hint: Because of the fact that sentensive data is used, the library
doesn't contain any real cryptographic code. For all crypto
routines we referring to the Libgcrypt library!