ADM smb is a security scanner for Samba
/* based on the src of the smbclient from the samba team */
ADMsmb will perform a complete audit of samba for you on a host you
provide.
cryptlib is a powerful security toolkit which allows even inexperienced
crypto programmers to easily add encryption and authentication services to
their software. The high-level interface provides anyone with the ability to
add strong security capabilities to an application in as little as half an
hour, without needing to know any of the low-level details which make the
encryption or authentication work. Because of this, cryptlib dramatically
reduces the cost involved in adding security to new or existing applications.
cryptlib provides a standardised interface to a number of popular encryption
algorithms, as well as providing a high-level interface which hides most of
the implementation details and provides an operating-system-independent
encoding method which makes it easy to transfer secured data from one operating
environment to another.
GSS is an implementation of the Generic Security Service Application Program
Interface (GSS-API). GSS-API is used by network servers (e.g., IMAP, SMTP) to
provide security services, e.g., authenticate clients against servers.
GSS consists of a library and a manual.
### WHAT IS PHPSECINFO?
PHPSecInfo is a PHP environment security auditing tool modeled after the
phpsecinfo() function. From a single function call, PHPSecInfo runs a
series of tests on your PHP environment to identify potential security
issues and offer suggestions. It can be useful as part of a multilayered
security approach.
#### WHAT IS PHPSECINFO NOT?
* It is not a replacement for secure coding practices
* It does not audit PHP code
* It is not comprehensive test for either your hosting environment
or your web application
* It is not the "final word." PHPSecInfo identifies *potential* problems
and offers suggestions for improvement. Your environment may _require_
certain settings that trigger cautions or warnings.
Lynis is an auditing tool for Unix (specialists). It scans the
system and available software, to detect security issues. Beside
security related information it will also scan for general system
information, installed packages and configuration mistakes.
This software aims in assisting automated auditing, software patch
management, vulnerability and malware scanning of Unix based systems.
It can be run without prior installation, so inclusion on read only
storage is no problem (USB stick, cd/dvd).
Powerful webserver security scanner.
Supports rule scan, virtual hosts, network ranges and more.
PyXMLSec is a set of Python bindings for the XML Security library (XMLSec).
GnuTLS is a secure communications library implementing the SSL, TLS and DTLS
protocols and technologies around them. It provides a simple C language
application programming interface (API) to access the secure communications
protocols as well as APIs to parse and write X.509, PKCS #12, OpenPGP and
other required structures. It is aimed to be portable and efficient with
focus on security and interoperability.
The IPv6 toolkit is a portable IPv6 security assessment suite produced
by Fernando Gont on behalf of the UK CPNI.
Flawfinder searches through source code looking for potential security
flaws. Flawfinder uses an internal database called the ``ruleset''; the
ruleset identifies functions that are common causes of security flaws.
Every potential security flaw found in a given source code file (matching
an entry in the ruleset) is called a ``hit,'' and the set of hits found
during any particular run is called the ``hitlist.''