This is a very simple snort rule object. It was developed to allow for
scripted dynamic rule creation. Ideally you could dynamically take a
list of bad hosts and build an array of snort rule objects from that
list. Then write that list using the string() method to a snort rules
file.
Module::Signature adds cryptographic authentications to CPAN
distributions, via the special SIGNATURE file.
If you are a module user, all you have to do is to remember
running "cpansign -v" (or just "cpansign") before issuing
"perl Makefile.PL" or "perl Build.PL"; that will ensure the
distribution has not been tampered with.
For module authors, you'd want to add the SIGNATURE file to
your MANIFEST, then type "cpansign -s" before making a distribution.
dsniff is a collection of tools for network auditing and penetration testing.
dsniff, filesnarf, mailsnarf, msgsnarf, urlsnarf, and webspy passively monitor
a network for interesting data (passwords, e-mail, files, etc.). arpspoof,
dnsspoof, and macof facilitate the interception of network traffic normally
unavailable to an attacker (e.g, due to layer-2 switching). sshmitm and webmitm
implement active monkey-in-the-middle attacks against redirected SSH and HTTPS
sessions by exploiting weak bindings in ad-hoc PKI.
Belier allows opening a shell or executing a command on a remote computer
through a SSH connection. The main feature of Belier is its ability to cross
several intermediate computers before realizing the job.
This is a PHP library providing a wrapper to Colin Percival's scrypt
implementation. Scrypt is a key derivation function designed to be
far more secure against hardware brute-force attacks than alternative
functions such as PBKDF2 or bcrypt.
PHP bindings to the libssh2 library which provide access to resources
(shell, remote exec, tunneling, file transfer) on a remote machine using a
secure cryptographic transport.
BruteForceBlocker is a perl script, that works along with pf - OpenBSD's
firewall (Which is also available on FreeBSD since version 5.2 is out).
It's main purpose is to block SSH bruteforce attacks via firewall.
When this script is running, it checks sshd logs from syslog and looks
for Failed Login attempts - mostly some annoying script attacks, and
counts number of such attempts. When given IP reaches configured limit
of fails, script puts this IP to the pf's table and blocks any further
traffic to the that box from given IP (This also depends on
configuration done in pf.conf).
This is a PAM module which allows authentication against alternate
passwd files.
A PAM module that allows you to require a special group or
user to access a service.
This PAM service module allows PAM-enabled applications to check if
the target user is in some arbitrary plaintext list. Similar to module
pam_ftpusers from the FreeBSD Project and is based on it's code.