Tripwire is a tool that aids system administrators and
users in monitoring a designated set of files for any changes.
Used with system files on a regular (e.g., daily) basis, Tripwire
can notify system administrators of corrupted or tampered files,
so damage control measures can be taken in a timely manner.
Unhide is a forensic tool to find hidden processes and TCP/UDP ports by
rootkits / LKMs or by another hidden technique. It consists of two
programs: unhide and unhide-tcp.
unhide detects hidden processes through:
* Comparison of /proc vs /bin/ps output.
* Comparison of info gathered from /bin/ps with info gathered from.
* Syscalls (syscall scanning).
* Full PIDs space ocupation (PIDs bruteforcing).
unhide-tcp identifies TCP/UDP ports that are listening but not listed in
/bin/netstat by doing brute forcing of all TCP/UDP ports availables.
Unicornscan is a new information gathering and correlation engine built
for and by members of the security research and testing communities. It
was designed to provide an engine that is scalable, accurate, flexible,
and efficient.
This is a utility which locks a terminal so it can only be unlocked with the
user's password (or the root password). It uses PAM authentication by default.
XML Security Library is the latest stable of a C library based on
LibXML2 and OpenSSL. The library was created with a goal to support
major XML security standards:
- XML Signature
- XML Encryption
- Canonical XML (was included in libxml2)
- Exclusive Canonical XML (was included in libxml2)
zzuf is a transparent application input fuzzer. Its purpose is to
find bugs in applications by corrupting their user-contributed data
(which more than often comes from untrusted sources on the Internet).
It works by intercepting file and network operations and changing
random bits in the program's input. zzuf's behaviour is
deterministic, making it easier to reproduce bugs.
The Symbion SSL Proxy listens on a TCP port, accepts SSL connections, and
forwards them to an other (local or remote) TCP port, or UNIX domain socket.
w3af is a Web Application Attack and Audit Framework. The project's
goal is to create a framework to find and exploit web application
vulnerabilities that is easy to use and extend.
TrouSerS is an CPL (Common Public License) licensed Trusted Computing
Software Stack. It is mostly compliant with the TSS 1.2 specification.
wpa_supplicant is a client (supplicant) with support for WPA and WPA2
(IEEE 802.11i / RSN). It is suitable for both desktop/laptop computers and
embedded systems. Supplicant is the IEEE 802.1X/WPA component that is used
in the client stations. It implements key negotiation with a WPA
Authenticator and it controls the roaming and IEEE 802.11 authentication/
association of the wlan driver.
wpa_supplicant is designed to be a "daemon" program that runs in the
background and acts as the backend component controlling the wireless
connection. wpa_supplicant supports separate frontend programs and a
text-based frontend (wpa_cli) and a GUI (wpa_gui) are included with
wpa_supplicant.