Dr.Morena is a tool to confirm the rule configuration of a firewall. It inspects all the firewall rules that are currently in effect, and tests these rules by sending various kinds of test packets through the firewall. This allows you to confirm that the rules that you intend to be in effect are actually in effect.
DAXFi is a Python script that helps configure several different kinds of firewalls in a consistent way. It can run as daemon to adapt its behavior to external conditions; rules can be described with XML files, XML strings, or generated directly by the code; the program can be configured and extended with a sort of plug-ins written in Python. It comes with a Python package, useful to build other applications aimed to manipulate different firewalls in a uniform way (some example programs are included).
ENIN (Enumerate IPX nodes) enumerates IPX nodes on a network. It works by sending an IPX ping packet to all nodes on a network. In addition to printing the IPX network and node address, it is able to print the hexdump of the packet, try to identify the IPX stack on the node, and parse the diagnostic response (giving the IPX version, the SPX diagnostic socket, a list of installed components, a list of interfaces in case of routers, etc.).
The Port Scan Attack Detector (psad) is a collection of three system daemons that are designed to work with the Linux iptables firewalling code to detect port scans and other suspect traffic. It features a set of highly configurable danger thresholds (with sensible defaults), verbose alert messages, email alerting, DShield reporting, and automatic blocking of offending IP addresses. Psad incorporates many of the packet signatures included in Snort to detect various kinds of suspicious scans, and implements the same passive OS fingerprinting algorithm used by p0f.
ssh-keyinstall is a script that helps an ssh user set up the keys at both ends of an ssh connection. It creates an rsa or dsa key if needed and copies the public half to the server. Once the process is done, you'll be able to log in with the passphrase and key instead of a password.
Lire is a pluggable log analyzer. It has analyzers for over 25 log file formats, ranging from Apache WWW log files to iptables firewall logs and CUPS printing logs. Reports are generated in 9 different output formats, ranging from Excel 95 to PDF to HTML, optionally with included graphs.