finic helps users manage their finances. It can be used on a local network (as a client-server system for many users) or on local computer (client only for one user), with separation of accounts, clauses, and customers. It can encrypt information and manage different users with different access rights. Reports can be generated as HTML, PDF, or XLS files or through an internal print preview system. An API is available for creating extensions.
OAMP stands for (O)penBSD + (A)pache + (M)ySQL + (P)ostgreSQL + PHP. It is the OpenBSD cousin of LAMP, except that it also provides the SQlite database engine, Perl, Ruby, and Python. In addition, OAMP provides phpMyAdmin and phpPgAdmin for easy administration of MySQL and PostgreSQL over the Web.
Obol is a specialized high-level programming language for security protocols. The idea is to program closer to the abstractions used to describe and analyze security protocols, and leave all the nasty details to the language's runtime. The runtime will then handle "mundane" issues such as message representation, communication, cryptographic transformations and so on. The language is interpreted, and the runtime written in Java.
py-bcrypt is a Python wrapper of OpenBSD's Blowfish password hashing code, as described in "A Future-Adaptable Password Scheme" by Niels Provos and David Mazières. This system hashes passwords using a version of Bruce Schneier's Blowfish block cipher with modifications designed to raise the cost of off-line password cracking and frustrate fast hardware implementation. The computation cost of the algorithm depends on a parameter, so it can be increased as computers get faster.
Jafe is a small application designed to keep sensitive data organized in an easy-to-use way, with heavy focus on security. It's designed to be accessible on as many systems as possible. It's regularly tested under Windows, Linux, and OS X, JDK 1.4.2 and 1.5, but should work on other systems. It features an easy-to use interface, strong encryption (AES, Twofish, Serpent and Camellia), and plausible deniability. Different data storage backends will be supported: filesystems, embedding into images, saving over the Internet, etc.
CODEX (the Cornell Data Exchange) is a key distribution system. It is designed for applications with a moderate number of clients (tens or hundreds) requesting keys that change often but not continuously (on the scale of minutes to hours). It employs the RSA and ElGamal encryption schemes, as well as techniques such as threshold cryptography and proactive secret sharing.
Stegdetect is an automated tool for detecting steganographic content in images. It is capable of detecting several different steganographic methods to embed hidden information in JPEG images. Currently, the detectable schemes are jsteg, jphide, invisible secrets, outguess 01.3b, F5, appendX, and camouflage. Using linear discriminant analysis, it also supports detection of new stego systems. Stegbreak is used to launch dictionary attacks against JSteg-Shell, JPHide, and OutGuess 0.13b.
The tcb suite implements the alternative password shadowing scheme on Openwall GNU/*/Linux (Owl) which allows many core system utilities (passwd(1) being the primary example) to operate with little privilege. It is being made available separately from Owl primarily for use by other distributions. This package contains three core components of the tcb suite: pam_tcb (a PAM module which supersedes pam_unix), libnss_tcb (the accompanying NSS module), and libtcb (a library for accessing tcb shadow files, used by the PAM and NSS modules as well as by user management tools on Owl).