Very simple authorization gem
SSHKey generates private and public SSH keys (RSA and DSA supported) using pure
Ruby.
SSHKit is a comprehensive toolkit for remotely running commands in a structured
manner on groups of servers.
twitter_oauth is a Ruby client for the Twitter API using OAuth.
This is a set of various Samba VFS modules to scan and filter virus
files on Samba file services with an anti-virus scanner.
Supported Anti-Virus engines:
- ClamAV (clamd daemon)
- F-Secure Anti-Virus (fsavd daemon)
- Sophos Anti-Virus (savdid daemon)
This is a tool that uses ARP poisoning to have a scenario
like this: we have a LAN and we want offer connectivity to every-
one coming here with his laptop for example. It could happen that
our customer has his network parameters already configured to
work correctly in his own LAN, but not working here. We can have
then this scenario:
Customer's host (10.0.0.2/8 and default gateway set to 10.0.0.1)
Our LAN (192.168.0.0/24 with real gateway 192.168.0.254).
All that we want is that our customer plugs his laptop and joins
the internet without changing nothing of his network parameters.
Here comes this tool installed in my real gw(192.168.0.254) It's
a sort of sniffer, because it sniffs broadcast ARP requests for
the gateway and answers that the gateway is itself In our example
our customer's laptop sends this request: arp who-has 10.0.0.1
tell 10.0.0.2 Now our gateway does the following: 1) Sends back
this reply to 10.0.0.2: arp reply 10.0.0.1 is-at his_mac_address
2)Create the alias 10.0.0.254 (ARP is not routable so we need one
alias for each subnet that is not our one) 3)Sends itself an ARP
reply to refresh his ARP cache
It is different from proxy arp for two reasons: first it runs in
user space, then in this case we can plug machines belonging to
whatever subnet, while proxy arp is used in the case of only two
different ones.
This Bash script will download and install definition files for Clamav from the
following sites:
sanesecurity.com
malware.com.br
clamav.securiteinfo.com
Scanhill is a Microsoft Messenger Protocol Sniffer. Currently it can only
intercept Instant Text Messaging. Optionally, intercepted text messages can be
stored onto an RDMBS (Only mySQL is supported for now). Given that mySQL is
used, stored instant messages can be read through a browser interface that is
written in PHP language. Please see the INSTALL.txt file for instructions on
how to install, configure and run EnderUNIX scanhill.
scanlogd is a TCP port scan detection tool, originally designed to illustrate
various attacks an IDS developer has to deal with. Unlike some of the other
port scan detection tools out there, scanlogd is designed to be totally safe
to use.
-Roman Bogorodskiy
<bogorodskiy@inbox.ru>
xspy is a utility for monitoring keypresses on remote X servers. It
takes advantage of an oversight in X Windows (R5 & R6) to find out
about keypresses even in "secure mode". It works by polling the
keyboard, by default every hundredth of a second.