OpenBSM is an open source implementation of Sun's Basic Security Module (BSM)
Audit API and file format. BSM, the de facto industry standard for Audit,
describes a set of system call and library interfaces for managing audit
records, as well as a token stream file format that permits extensible and
generalized audit trail processing. OpenBSM extends the BSM API and file
format in a number of ways to support features present in the Mac OS X and
FreeBSD operating systems, such as Mach task interfaces, sendfile(), and
Linux system calls present in the FreeBSD Linux emulation layer.
A FTP daemon that aims to be "very secure"
From the README file:
Author: Chris Evans
vsftpd is an FTP server, or daemon. The "vs" stands for Very
Secure. Obviously this is not a guarantee, but a reflection
that I have written the entire codebase with security in mind,
and carefully designed the program to be resilient to attack.
LICENSE: GPL2 or later with exception to link with OpenSSL
OSSEC is an Open Source Host-based Intrusion Detection System.
It performs log analysis, integrity checking, Windows registry
monitoring, rootkit detection, time-based alerting and active
Workflow and security settings for Plone.
A library for building web service security.
NetSPoC is a tool for security managment of large computer networks with
different security domains. It generates configuration files for packet
filters controlling the borders of security domains.
NetSPoC provides its own language for describing security policy and topology
of a network. The security policy is a set of rules that state which packets
are allowed to pass the network and which not. NetSPoC is topology aware: a
rule for traffic from A to B is automatically applied to all managed packet
filters on the path from A to B.
Currently NetSPoC generates ACLs and static routing entries for Cisco routers
and PIX firewalls. Support for network address translation and IPSec has not
been implemented yet.
Adds ticket security policy based on keyword.
Fuzzdb is a comprehensive set of fuzzing patterns that can be used
during discovery or security testing of web applications.