EtherPEG was a program that sniffed for JPEGs passing by on the AirPort
networks at MacHack, and showed them on the huge screen to shame people
into a) turning the 802.11 encryption on, or b) reducing amount of pr0n
they download at weirdo Mac conventions. DRIFTNET can do the same for
*your* office, and make an attractive desktop accessory to boot. The
program promiscuously sniffs and decodes any JPEG downloaded by anyone
on your LAN, displaying it in an attractive, ever changing mosaic of
fluffy kittens, oversized navigation buttons, and blurred images of Big
Brother Elizabeth fiddling. It's UNIX only. Your sysadmin is undoubtedly
running it already. So stop that. Now.
DHCDROP - utility for tracing and neutralizing(blocking) fake DHCP
servers in Ethernet. Supports various modes. Theres possibility
to set outgoing MAC addresses and optional settings in generated
DHCP requests. Supports legal DHCP servers list. One can run it
in interactive mode under users control or fully automatic mode for
start up from script.
Tools to capture, replicate, print, filter, send and other works
on Cisco's NetFlow Export.
grepcidr can be used to filter a list of IP addresses against one
or more Classless Inter-Domain Routing (CIDR) specifications, or
arbitrary networks specified by an address range. As with grep,
there are options to invert matching and load patterns from a file.
grepcidr is capable of comparing thousands or even millions of IPs
to networks with little memory usage and in reasonable computation
time.
grepcidr has endless uses in network software, including: mail
filtering and processing, network security, log analysis, and many
custom applications.
The icmpmonitor uses the Internet Control Message Protocol (ICMP) "ECHO"
facility, monitors several hosts, and notify admin if some of them are
down.
iftop listens to network traffic on a named interface, or
on the first interface it can find which looks like an
external interface if none is specified, and displays a
table of current bandwidth usage by pairs of hosts. iftop
must be run with sufficient permissions to monitor all
network traffic on the interface; see pcap(3) for more
information, but on most systems this means that it must
be run as root.
check_certexp is a Nagios plugin for checking the number of days left until a
certificate expires. The check is done via an SSL connection (STARTTLS
mechanisms are not supported). The plugin is written in Perl, should work with
the embedded Perl interpreter (not tested though) and requires Net::SSLeay and
Date::Manip to be installed on the Nagios host.
check_spamd is a Nagios plugin for checking SpamAssassins SPAMD. It's written
in Perl, should work with the embedded Perl interpreter (not tested though),
does not require spamc to be installed on the Nagios host and has no other
prerequisites.
NBTscan is a program for scanning IP networks for NetBIOS name
information. It sends NetBIOS status query to each address in
supplied range and lists received information in human readable
form. For each responded host it lists IP address, NetBIOS computer
name, logged-in user name and MAC address.
NagiosAgent is a QT-based frontend to Nagios.