HTTPTunnel is a simple client/server application for creating an HTTP tunnel between two machines, optionally via a Web proxy. This tunnel can then be used to wrap arbitrary TCP socket traffic in HTTP, thus allowing communications even through a restrictive firewall that only allows outgoing HTTP connections.
Firewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
GreenSQL is a database firewall used to protect databases from SQL injection attacks. GreenSQL works in a proxy mode and has built-in support for MySQL. The logic is based on evaluation of SQL commands using a risk scoring matrix, as well as blocking known DB administrative commands (such as DROP and CREATE).
HAVP (HTTP Anti Virus Proxy) is a proxy which scans downloads for viruses with several scanners (ClamAV, F-Prot, Kaspersky, NOD32, Sophos) at the same time. The main aims are continuous, non-blocking downloads and smooth scanning of dynamic and password protected HTTP traffic. It can be used with squid or standalone, and it also supports transparent proxy mode.
Vyatta is a Linux-based routing and security distribution. It is meant to deliver a flexible, affordable alternative to Cisco 1800 through 7200 series routers. Vyatta is also a great virtual router, virtual firewall, virtual security solution for VMware, Xen, XenServer, and KVM virtualization projects.
vt-ng detects virus and worm like activity based on communication patterns. It can be used to detect infected hosts within your internal network and stop the spread of malware. Detection is based on the fact that malware usually tries to initiate many connections to the outside network for various reasons, such as to "phone home", download further malware, or scan the network for other vulnerable hosts.
Firekeeper is an intrusion detection and prevention system for Firefox. It is able to detect, block and warn the user about malicious sites. Firekeeper uses flexible rules similar to Snort ones to describe browser-based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content.