Trinux is a minimal Linux distribution that boots from a single floppy or CD-ROM, loads its packages from an FTP/HTTP server, IDE filesystem, or additional floppies, and runs entirely in RAM. It contains the most comprehensive set of network security tools available in any Linux distribution and can be used to conduct security research, analyze network traffic, and perform vulnerability testing of networks and applications.
tsocks provides transparent network access through a SOCKS version 4 or 5 proxy (usually on a firewall). tsocks intercepts the calls applications make to create TCP connections and determines if they can be directly accessed or need the SOCKS server. If they need the SOCKS server they connection is negotiated with the server transparently to the application. This allows existing applications to use SOCKS without recompilation or modification. tsocks is a wrapper library for the libc connect() call.
The Userspace Logging Daemon (ulogd) is a flexible framework for extensive logging of packets on a firewall machine. ulogd uses the ULOG target of iptables/netfilter, the packet filtering framework of Linux 2.4 and 2.6. It supports binary plugins for adding packet interpreters and output-targets (e.g., for logging into databases, user-defined filetypes, etc.).
vpnd is a daemon which connects two networks on network level either via TCP/IP or a (virtual) leased line attached to a serial interface. All data transfered between the two networks are encrypted using the unpatented free Blowfish encryption algorithm with a key length of up to 576 bits (may be downgraded to a minimum of 0 bits to suit any legal restrictions).
XOTcl provides a highly flexible, reflective, component-based object oriented environment that integrates language support for high level object oriented concepts (which are not found in other languages) with reasonable performance. XOTcl is an extension of TCL and was derived from the impressive OTcl language developed by D. Wetherall and C. Lindblad at MIT in 1995 and extended in various ways. XOTcl's language constructs explicitly aim at the complexity in a component gluing layer that is not solved by traditional object orientation in the style of C++ or Java.
Xtradius is a radius server that permits you to handle user authentication and accounting request via external scripts. You can handle script requests for user accounting, user authentication, NAS start and NAS stop packets. You can also write additional information into the NAS detail logfile. Parameters to scripts are passed via command line options or environment variables, making it very simple to implement SQL-based user accounting, authentication and account expiration. It is also compatible with "standard" cistron radius server.
Zorp is a proxy firewall suite with its core architecture is built around today's security demands: it uses application level proxies, is modular and component based, uses a script language to describe policy decisions, makes it possible to monitor encrypted traffic, lets you override client actions, and lets you protect your servers with its built in IDS capabilities.
ipfmeta is used to simplify the maintenance of an IPfilter ruleset. It does this through the use of 'objects'. A matching object gets replaced by its values at runtime. ipfmeta is specifically geared towards IPfilter, but may also be used for other firewall packages (iptables). It is line-oriented: if an object has multiple values, the line with the object is duplicated and substituted for each value. It is also recursive: an object may have another object as a value.