Suricata is an Intrusion Detection and Prevention (IDS/IPS) engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support, file extraction capabilities, and many more features. It's capable of loading existing Snort rules and signatures, and supports many frontends through Barnyard2.
RackTables is a tool to manage tens of racks, hundreds of servers, and thousands of MAC and IP addresses. It will work with a single rack as well. It features a real-life rackspace model, typed rack objects with flexible attribute sets, a tagging system, IP address management ready for NAT, virtual routers and load balancers, accurate network connection handling, a universal search function, a multi-user access model, and an extensible dictionary.
MasarLabs PatD is a daemon to ping or traceroute remote hosts, using IPv4 or IPv6 ICMP packets. It runs without root privileges, listening on a TCP local port for hosts to check. It uses a protocol simple to implement, so is useful in situations in which you cannot send native ICMP packets (for example, from a Java program). pat is a client you can use to talk to patd.
Andrisoft WANGUARD is an enterprise-grade traffic monitoring and DDoS detection and protection solution that delivers the functionality NOC, IT, and security teams need to effectively monitor and protect their network through a single, integrated package. WANGUARD Sensor relies on sFlow, NetFlow, IPFIX, or Port Mirroring / SPAN.
lftp is a sophisticated command line based file transfer program. Supported protocols include FTP, HTTP, SFTP, and FISH. It has a multithreaded design allowing you to issue and execute multiple commands simultaneously or in the background. It also features mirroring capabilities and will reconnect and continue transfers in the event of a disconnection. Also, if you quit the program while transfers are still in progress, it will switch to nohup mode and finish the transfers in the background. Additional protocols supported: FTP over HTTP proxy, HTTPS and FTP over SSL, BitTorrent protocol. IPv6 is fully supported. There are lots of tunable parameters, including rate limitation, number of connections limitation and more.
Andrisoft WANSIGHT is a fully featured network traffic analyzer and collector. It provides in-depth traffic analysis, traffic accounting, and bandwidth monitoring, and enables you to generate complex traffic reports, graphs, and tops, instantly pin down the cause of network incidents, understand patterns in application performance, and make the right capacity planning decisions. It supports 10GbE packet sniffing and NetFlow, sFlow, and IPFIX.
dhcpy6d delivers IPv6 addresses for DHCPv6 clients, which can be identified by DUID, hostname, or MAC address, as in the good old IPv4 days. Addresses may be generated randomly, by range, or by arbitrary ID or MAC address. Clients can get more than one address, leases and client configuration can be stored in databases, and DNS can be updated dynamically.
IP Tables State implements the "state top" feature from IP Filter for IP Tables. "State top" displays the states held by your stateful firewall in a "top"-like manner. Since IP Tables doesn't have a built-in way to easily display this information once, an option was added to iptstate to do this.