LibTomCrypt is a portable ANSI C cryptographic library that supports symmetric
ciphers, one-way hashes, pseudo-random number generators, public key
cryptography (via RSA,DH or ECC/DH) and a plethora of support routines.
libmcrypt is a cryptographic library that conveniently brings together
a variety of ciphers for convenient use.
In particular, having libmcrypt allows you to build PHP with
encryption.
log2timeline is a computer forensic tool to parse various log files and
artifacts found on suspect systems and produce a timeline that can be
analyzed by computer forensic examiners.
This program is intended to replace crypt(1), It supports all the
algorithms and modes in libmcrypt (BLOWFISH, TWOFISH, DES, TripleDES,
3-WAY, SAFER, LOKI97, GOST, RC2, RC6, MARS, IDEA, RIJNDAEL, SERPENT,
CAST, ARCFOUR and WAKE), and is compatibile with UNIX crypt(1) and
with des(1) from Solaris.
Sshguard monitors services from their logging activity. It reacts to messages
about dangerous activity by blocking the source address with the local firewall.
Sshguard employs a clever parser that can recognize several logging formats at
once transparently (syslog, syslog-ng, metalog, multilog, raw messages), and
detects attacks for many services out of the box, including SSH, FreeBSD's
ftpd and dovecot. It can operate all the major firewalling systems, including
PF, netfilter/iptables, and IPFIREWALL/ipfw.
Sshguard has several relevant features like support for IPv6, whitelisting,
suspension, log message authentication. It is reliable, easy to set up and
demands very few resources to the system.
NCrypt is intended to give you security in an insecure environment.
If you are wanting to encrypt files (particularly on a multi-user
system where you don't have root), wishing to hide your activites
from prying eyes, and want to "cover your tracks", then NCrypt is
for you. It is a symmetrical file encryptor/decryptor that gives
you the choice of the top three candidates for AES as the encryption
algorithm (Rijndael, Serpent, Twofish), tries to minimize exposure
of the plaintext password in memory, and can safely erase the
plaintext version from the hard drive. It compiles without any extra
crypto libraries, making it ideal for systems where you just have
a compiler and basic libraries (such as an ISP's shell server).
Oinkmaster is simple Perl script released under the BSD license to help you
update your Snort 1.9+ rules and comment out the unwanted ones after each
update. It will tell you exactly what had changed since the last update,
hence giving you good control of your rules.
From the README:
"oidentd is an ident (rfc1413 compliant) daemon that runs on Linux,
FreeBSD, OpenBSD and Solaris. oidentd can handle IP masqueraded/NAT connections
on Linux, FreeBSD (ipf only) and OpenBSD. oidentd has a flexible mechanism for
specifying ident responses. Users can be granted permission to specify their
own ident responses. Responses can be specified according to host and port
pairs."
FreeBSD's inetd has a built-in ident service which can also generate
bogus responses.
Please see the TODO file for more information on why only ipf is
supported under FreeBSD.
Mark Laws
mdl@60hz.org
OSSEC is an Open Source Host-based Intrusion Detection System.
It performs log analysis, integrity checking, Windows registry
monitoring, rootkit detection, time-based alerting and active
response.
The axTLS project is an SSL client/server library using the TLSv1
protocol. It is designed to be small and fast, and is suited to
embedded projects. A web server is included.