pamtester is a tiny utility program to test the pluggable authentication
modules (PAM) facility, which is a de facto standard of unified authentication
management mechanism in many unices and similar OSes including Solaris, HP-UX,
*BSD, MacOSX and Linux.
While specifically designed to help PAM module authors to test their modules,
that might also be handy for system administrators interested in building a
centralised authentication system using common standards such as NIS, SASL and
LDAP.
A tool to collect DNS records passively to aid Incident handling, Network
Security Monitoring (NSM) and general digital forensics.
PassiveDNS sniffs traffic from an interface or reads a pcap-file and outputs
the DNS-server answers to a log file. PassiveDNS can cache/aggregate duplicate
DNS answers in-memory, limiting the amount of data in the logfile without
losing the essense in the DNS answer.
Razorback is a framework for an intelligence driven security solution.
It consists of a Dispatcher at the core of the system, surrounded by
Nuggets of varying types.
SWF Nugget is a Razorback Detection Nugget that scans Flash files
collected by Razorback Collector Nuggets. SWF Nugget decompresses
(as necessary) and parses Flash files to detect attacks exploiting
known vulnerabilities.
The scan results are sent back to Razorback Dispatcher to correlate
with other Razorback Nuggets.
Net::SCP is a pure-Ruby implementation of the SCP protocol. This operates over
SSH (and requires the Net::SSH library), and allows files and directory trees
to copied to and from a remote server.
* Transfer files or entire directory trees to or from a remote host via SCP
* Can preserve file attributes across transfers
* Can download files in-memory, or direct-to-disk
* Support for SCP URI's, and OpenURI
Net::SSH is a pure-Ruby implementation of the SSH2 client protocol. It
supports the following features:
- User authentication via explicit username/password, or using a
public-key/private-key pair.
- Port forwarding, both from the local host to a remote computer via
the remote host, and from the remote host to the local host.
- Execute processes on the remote machine, both interactively and
non-interactively ("batch").
A fully automated, active web application security reconnaissance
tool. Key features:
* High speed: pure C code, highly optimized HTTP handling, minimal
CPU footprint - easily achieving 2000 requests per second with
responsive targets.
* Ease of use: heuristics to support a variety of quirky web
frameworks and mixed-technology sites, with automatic learning
capabilities, on-the-fly wordlist creation, and form autocompletion.
* Cutting-edge security logic: high quality, low false positive,
differential security checks, capable of spotting a range of subtle
flaws, including blind injection vectors.
SASH (Stand-Alone SHell)
It is a nice combination of bare-bones shell and a dozen
or so most useful Unix commands.
Shell includes: echo pwd cd mkdir mknod rmdir sync rm chmod
chown chgrp touch mv ln cp cmp more exit
setenv printenv umask kill where
Commands include: dd ed grep gzip ls tar file find mount chattr
SASH is a port from Linux version (David Bell) by Andrzej Bialecki
DeltaRPM is a tool that generates RPMs that contains the difference between an
old and a new version of an RPM. This makes it possible to recreate the new RPM
from the deltarpm and the old one. You don't have to have a copy of the old
RPM, as it can also work with installed RPMs. The package also contains tools
for creating and applying delta ISOs.
flashrom is a utility for detecting, reading, writing, verifying and erasing
flash chips. It is often used to flash BIOS/EFI/coreboot/firmware images
in-system using a supported mainboard, but it also supports flashing of network
cards (NICs), SATA controller cards, and other external devices which can
program flash chips.
It supports a wide range of DIP32, PLCC32, DIP8, SO8/SOIC8, TSOP32, and TSOP40
chips, which use various protocols such as LPC, FWH, parallel flash, or SPI.
This package provides boot scripts used to enable FreeBSD to run on the
Amazon EC2 cloud computing platform. These include:
* Downloading the SSH public key which will be used to log in to a
newly-launched virtual machine,
* Printing SSH host key fingerprints to the console in a standard
format used by other EC2 images,
* Automatically configuring swap space on EC2 "ephemeral" disks, and
* Sending email when an virtual machine first boots and when rebooting
after a kernel panic.