Ports Search

The seccure toolset implements a selection of asymmetric algorithms based on elliptic curve cryptography (ECC). In particular it offers public key encryption / decryption, signature generation / verification and key establishment. ECC schemes offer a much better key size to security ratio than classical systems (RSA, DSA). Keys are short enough to make direct specification of keys on the command line possible (sometimes this is more convenient than the management of PGP-like key rings). seccure builds on this feature and therefore is the tool of choice whenever lightweight asymmetric cryptography -- independent of key servers, revocation certificates, the Web of Trust or even configuration files -- is required.

Shishi is a free implementation of the Kerberos 5 network security system. The goals of this project are: * Full standards compliance. * Thread safe library. * Internationalization, both for client messages but also for non-ASCII username and passwords. * Integrate with existing password management systems (/etc/passwd, PAM, SASL). * Clean room implementation with clear copyright and license.

sig2dot can be used to generate a graph of all of the signature relationships in a GPG/PGP keyring. It converts the output of "gpg --list-sigs" to a .dot file, which is a graph definition that can be rendered by springgraph or graphviz.

signing-party is a collection for all kinds of PGP/GnuPG related things, including signing scripts, party preparation scripts, etc. * caff: CA - Fire and Forget signs and mails a key * pgp-clean: removes all non-self signatures from key * pgp-fixkey: removes broken packets from keys * gpg-mailkeys: simply mail out a signed key to its owner * gpg-key2ps: generate PostScript file with fingerprint paper strips * gpglist: show who signed which of your UIDs * gpgsigs: annotates list of GnuPG keys with already done signatures * keylookup: ncurses wrapper around gpg --search

SiLK, the System for Internet-Level Knowledge, is a collection of netflow tools developed by the CERT/NetSA (Network Situational Awareness) Team to facilitate security analysis in large networks. SiLK consists of a suite of tools which collect and examine netflow data, allowing analysts to rapidly query large sets of data.

Snort Report is an add-on module for the Snort Intrusion Detection System. It generates real-time intrusion detection reports in an easy to read format based on data collected from a MySQL or PostgreSQL database.

Orthrus is a C library and user interfaces for RFC 2289, "A One-Time Password System (OTP)", also known as OPIE or S/Key.

ssl-admin was designed to create a user-friendly, menu-driven interface to the OpenSSL programs. ssl-admin will help you do the following tasks with SSL certificates: * Create your own CA certificate. * Create new Certificate Signing Requests * Sign existing Certificate Signing Requests * Manage Certificate Revokation Lists * Export configurations and certificates for OpenVPN.

ssss is an implementation of Shamir's secret sharing scheme for UNIX/Linux machines. It is free software, the code is licensed under the GNU GPL. ssss does both: the generation of shares for a known secret and the reconstruction of a secret using user provided shares. The software was written in 2006 by B. Poettering, it links against the GNU libgmp multiprecision library (version 4.1.4 works well) and requires the /dev/random entropy source.

Switzerland is a tool for testing networks, ISPs, and firewalls developed by the Electronic Frontier Foundation (www.eff.org). It will spot IP packets which are forged or modified between clients, inform you, and give you copies of the modified packets.