469 projects tagged "Firewalls"

No download No website Updated 22 Oct 2013 Trigger

Screenshot
Pop 22.98
Vit 14.81

Trigger is a robust network automation toolkit that was designed for interfacing with network devices and managing network configuration and security policy. It increases the speed and efficiency of managing large-scale networks while reducing the risk of human error.

No download Website Updated 17 Oct 2013 FireHOL

Screenshot
Pop 446.08
Vit 7.64

FireHOL a simple yet powerful way to configure stateful iptables firewalls. It can be used for almost any purpose, including control of any number of internal/external/virtual interfaces, control of any combination of routed traffic, setting up DMZ routers and servers, and all kinds of NAT. It provides strong protection (flooding, spoofing, etc.), transparent caches, source MAC verification, blacklists, whitelists, and more. Its goal is to be completely abstracted and powerful but also easy to use, audit, and understand.

Download Website Updated 23 Sep 2013 NetSPoC

Screenshot
Pop 144.75
Vit 8.04

The Network Security Policy Compiler (NetSPoC) is a tool for security management of large computer networks with different security domains. It generates configuration files for packet filters controlling the borders of security domains. It provides its own language for describing security policy and the topology of a network. The security policy is a set of rules that state which packets are allowed to pass the network and which are not. NetSPoC is topology aware; a rule for traffic from A to B is automatically applied to all managed packet filters on the path from A to B.

Download Website Updated 20 Aug 2013 ike-scan

Screenshot
Pop 84.78
Vit 1.47

ike-scan discovers IPsec VPN servers, and can fingerprint them using UDP backoff and Vendor ID fingerprinting techniques. It supports IKE Main Mode and Aggressive Mode. ike-scan allows flexible specification of the outgoing IKE packet, and decodes the response packets. It also supports pre-shared key cracking for IKE aggressive mode with pre-shared key authentication.

Download Website Updated 01 Jun 2013 PHREL

Screenshot
Pop 146.80
Vit 9.12

PHREL is a per host rate limiter. It will track the rate of incoming traffic on a server and insert a chain into iptables when a configured threshold is crossed. The inserted chain may either rate limit or block the offending host for a period of time. The inserted chain is automatically removed when the offending host's traffic levels return to normal. PHREL is particularly well suited to protecting nameservers (DNS) from random hosts that flood requests, and to preventing SSH brute force login attempts.

Download Website Updated 24 May 2013 fwlogwatch

Screenshot
Pop 317.21
Vit 21.04

fwlogwatch is a packet filter and firewall log analyzer with support for Linux ipchains, Linux netfilter/iptables, Solaris/BSD/HP-UX/IRIX ipfilter, Cisco IOS, Cisco PIX/ASA, Netscreen, Elsa Lancom router, and Snort IDS log files. It can output its summaries in text and HTML and has a lot of options. fwlogwatch also features a realtime anomaly response capability with a Web interface.

Download Website Updated 11 May 2013 ipset

Screenshot
Pop 84.48
Vit 2.53

ipset allows administration of sets of IP addresses/networks, ports, MAC addresses, and interfaces, which are stored in hash or bitmap data structures. These can then be used in conjunction with iptables to do fast presence lookups.

Download Website Updated 06 May 2013 HTTPTunnel

Screenshot
Pop 214.43
Vit 12.49

HTTPTunnel is a simple client/server application for creating an HTTP tunnel between two machines, optionally via a Web proxy. This tunnel can then be used to wrap arbitrary TCP socket traffic in HTTP, thus allowing communications even through a restrictive firewall that only allows outgoing HTTP connections.

No download Website Updated 10 Apr 2013 Hardened Linux

Screenshot
Pop 76.73
Vit 3.60

Hardened Linux is a hardened and minimalized Linux distribution based on Slackware. It includes a grsecurity/PaX patched kernel, stack smashing protected and hardened packages, additional security scripts, and automatically enabled host intrusion detection.

Download Website Updated 05 Mar 2013 libnetfilter_conntrack

Screenshot
Pop 120.04
Vit 9.18

libnetfilter_conntrack is a library that allows user-space programs to interface the kernel connection tracking table of the netfilter subsystem in the Linux kernel.

Screenshot

Project Spotlight

DOLPHIN SMASH

A mixed-signal, mixed-language multi-level simulator.

Screenshot

Project Spotlight

SRFirewall

An easy to use, but still quite capable firewall for Netfilter/iptables.