LibTomCrypt is a portable ANSI C cryptographic library that supports symmetric
ciphers, one-way hashes, pseudo-random number generators, public key
cryptography (via RSA,DH or ECC/DH) and a plethora of support routines.
libmcrypt is a cryptographic library that conveniently brings together
a variety of ciphers for convenient use.
In particular, having libmcrypt allows you to build PHP with
encryption.
log2timeline is a computer forensic tool to parse various log files and
artifacts found on suspect systems and produce a timeline that can be
analyzed by computer forensic examiners.
This program is intended to replace crypt(1), It supports all the
algorithms and modes in libmcrypt (BLOWFISH, TWOFISH, DES, TripleDES,
3-WAY, SAFER, LOKI97, GOST, RC2, RC6, MARS, IDEA, RIJNDAEL, SERPENT,
CAST, ARCFOUR and WAKE), and is compatibile with UNIX crypt(1) and
with des(1) from Solaris.
Sshguard 通过服务的日志活动来监视服务。它通过本地防火墙阻断源地址来对危险活动做出响应。
Sshguard 采用一种巧妙的解析器,可以透明地识别多种日志格式
(syslog、syslog-ng、metalog、multilog、raw messages),
且支持多种服务,包括 SSH、FreeBSD 的 ftpd 和 dovecot。它可以操作所有主流防火墙系统,
包括PF、netfilter/iptables、IPFIREWALL/ipfw、IPFILTER。
Sshguard 包含多种相关特性,如 IPv6 支持、白名单、暂停、日志消息认证。它可靠、
易于安装且仅要求很少的系统资源。
NCrypt is intended to give you security in an insecure environment.
If you are wanting to encrypt files (particularly on a multi-user
system where you don't have root), wishing to hide your activites
from prying eyes, and want to "cover your tracks", then NCrypt is
for you. It is a symmetrical file encryptor/decryptor that gives
you the choice of the top three candidates for AES as the encryption
algorithm (Rijndael, Serpent, Twofish), tries to minimize exposure
of the plaintext password in memory, and can safely erase the
plaintext version from the hard drive. It compiles without any extra
crypto libraries, making it ideal for systems where you just have
a compiler and basic libraries (such as an ISP's shell server).
Oinkmaster is simple Perl script released under the BSD license to help you
update your Snort 1.9+ rules and comment out the unwanted ones after each
update. It will tell you exactly what had changed since the last update,
hence giving you good control of your rules.
From the README:
"oidentd is an ident (rfc1413 compliant) daemon that runs on Linux,
FreeBSD, OpenBSD and Solaris. oidentd can handle IP masqueraded/NAT connections
on Linux, FreeBSD (ipf only) and OpenBSD. oidentd has a flexible mechanism for
specifying ident responses. Users can be granted permission to specify their
own ident responses. Responses can be specified according to host and port
pairs."
FreeBSD's inetd has a built-in ident service which can also generate
bogus responses.
Please see the TODO file for more information on why only ipf is
supported under FreeBSD.
Mark Laws
mdl@60hz.org
OSSEC is an Open Source Host-based Intrusion Detection System.
It performs log analysis, integrity checking, Windows registry
monitoring, rootkit detection, time-based alerting and active
response.
The axTLS project is an SSL client/server library using the TLSv1
protocol. It is designed to be small and fast, and is suited to
embedded projects. A web server is included.