UMIT is the new nmap frontend, intended to be cross plataform, easy to use, fast
and highly customizable. This project is developed with Python and PyGTK and run
with minimal dependencies.
SoftHSM is an implementation of a cryptographic store accessible
through a PKCS #11 interface. You can use it to explore PKCS #11
without having a Hardware Security Module. It is being developed
as a part of the OpenDNSSEC project. SoftHSM Version 2 is using
openssl for its cryptographic operations.
Yersinia is a layer 2 vulnerability scanner with support for the
following protocols:
Cisco Discovery Protocol (CDP)
Dynamic Host Configuration Protocol (DHCP)
Dynamic Trunking Protocol (DTP)
Hot Standby Router Protocol (HSRP)
IEEE 802.1q
Spanning Tree Protocol (STP, RSTP)
Virtual Trunking Protocol (VTP)
Strongswan is an open source IPsec-based VPN solution.
Strongswan for FreeBSD implements both the IKEv1 and IKEv2 (RFC 5996) key
exchange protocols.
The stunnel program is designed to work as SSL encryption
wrapper between remote client and local (inetd-startable) or
remote server. The concept is that having non-SSL aware dae-
mons running on your system you can easily setup them to
communicate with clients over secure SSL channel.
stunnel can be used to add SSL functionality to commonly
used inetd daemons like POP-2, POP-3 and IMAP servers
without any changes in the programs' code.
This is the CU version of sudo.
Sudo is a program designed to allow a sysadmin to give limited root
privileges to users and log root activity. The basic philosophy is to
give as few privileges as possible but still allow people to get their
work done.
Tcpcrypt is a protocol that attempts to encrypt (almost) all of your
network traffic. Unlike other security mechanisms, Tcpcrypt works out
of the box: it requires no configuration, no changes to applications,
and your network connections will continue to work even if the remote
end does not support Tcpcrypt, in which case connections will
gracefully fall back to standard clear-text TCP. Install Tcpcrypt and
you'll feel no difference in your every day user experience, but yet
your traffic will be more secure and you'll have made life much harder
for hackers.
TLSWrap is a TLS/SSL FTP wrapper/proxy for UNIX and Windows, allowing you to
use your favourite FTP client with any TLS/SSL-enabled FTP server.
Webfwlog is a flexible web-based analysis and reporting tool for firewall
logs. It supports log files in standard ipfilter or ipfw format.
With Webfwlog you can design reports to use on your firewall logs in whatever
configuration you desire. Included are example reports as a starting
point. You can sort a report with a single click, "drill-down" on the reports
all the way to the packet level, and save your reports for later use. You can
also create a link directly to any saved report.
Webfwlog requires a web server with PHP support and a MySQL or PostgresSQL
database server.
WolfSSL is an embedded SSL Library for programmers building security
functionality into their applications and devices.
Highlights
- Up to TLS 1.2 and DTLS 1.2
- Full client and server support
- Progressive list of supported ciphers
- Key and Certificate generation
- OCSP, CRL support
Lightweight
- Small Size: 20-100kB
- Runtime Memory: 1-36kB
- 20x smaller than OpenSSL
Portable
- Abstraction Layers (OS, Custom I/O, Standard C library, and more)
- Simple API
- OpenSSL Compatibility Layer
- Long list of supported platforms