Netjail is a user-space mechanism for restricting the socket connection attempts that a process makes. This makes it very useful for studying and/or foiling spyware and other software that has covert "home-calling" features. It is implemented as a shared library which is preloaded when launching the suspect program (via the LD_PRELOAD mechanism available in most moderm Unix systems). This library intercepts socket() and connect() calls to the standard socket library and logs the attempts. Based on environment variables, detailed rules can be put in place about which addresses will be allowed to connect. Connections that are disallowed will return the ECONNREFUSED (Connection Refused) error, which is most likely to be gracefully handled by hidden spyware functionality.
PhiloLogic is a full-text database engine developed for humanities computing text analysis by the ARTFL Project and the Digital Library Development Center at the University of Chicago. It is optimized for fast searching across very large collections of documents. It currently supports TEI-Lite, TEI XML, and TEI SGML documents.
pam_envfeed is a PAM module that runs an external program, grabs its output, and then defines the environment variables this program has emitted. It is especially useful for dynamically setting up a PATH that depends on many circumstances (such as whether the user is root, or whether a directory exists or not).
LibSysCTr is a utility library that can be used to intercept system call functions on a Linux system. Process monitoring and sandboxing are just two of its potential uses. Internally, it uses ptrace to monitor and report events to the library caller using callbacks. Utility functions are supplied to retrieve information about the process, get/set the system call parameters, and read/write the monitored process address space.
Propagast grabs UDP broadcast packets on the fly, and redirects them to all the unicast sockets that should have received these packets. So game servers, like HLDS (for Counter-Strike) and q3ded (for Quake III Arena), which are listening to a specific IP will appear in the LAN browser of the game and in the "All Seeing Eye" as well. Propagast runs in userland, and doesn't require patching the kernel.
Driver On Demand is an automated driver installation system for Linux that automatically identifies devices that have no drivers and uses an online database to install an appropriate driver for that device without human interaction (if requested). This makes it an ideal system for newbies, as it takes away most of the configuration part of Linux. The goal is to allow users to plug in any device and have it instantly work without the need to manually install drivers.