OpenFWTK is an application proxy toolkit which inherits the ideology of TIS fwtk and maintains API backwards compatibility. The design goal is to make it simple yet powerful; no performance hacks are allowed in the code and library dependencies are reduced to a minimum. It is a true application layer filter. It features unified pluggable content inspection for the most frequently used protocols, NAC (Network Admission Control), and the ability to define fine-grained Internet access policy based on browser identification.
OAMP stands for (O)penBSD + (A)pache + (M)ySQL + (P)ostgreSQL + PHP. It is the OpenBSD cousin of LAMP, except that it also provides the SQlite database engine, Perl, Ruby, and Python. In addition, OAMP provides phpMyAdmin and phpPgAdmin for easy administration of MySQL and PostgreSQL over the Web.
OpenBSD Live-CD Firewall is an OpenBSD-based pf (packet filter) firewall, with NAT, squid, DNS, and a DHCP server (dnsmasq) for internal clients preconfigured. Settings and log files can be saved to a USB device. Saved settings will be restored at the next reboot. Additional security related software is available on the CD (arpwatch, honeyd, ntop, portsentry, etc.)
Systrace enforces system call policies for applications by constraining the application's access to the system. The policy is generated interactively. Operations not covered by the policy raise an alarm, allowing the user to refine the currently configured policy. After a policy has been sufficiently constructed, further alarms often indicate security problems. Policies can also be generated automatically for sandboxing purposes.