The Ad hoc Protocol Evaluation testbed is a small Linux distribution intended for the analysis of ad hoc networking environments. It is self-contained and pre-configured, and contains tools for data gathering at both the IP and ethernet level. It also has a scenario scripting system, which enables APE test runs to use movement choreography, with instructions to participants.
Gircap is a set of tools to help you use the widely unknown "capabilities" that Linux has in place of conventional Unix superuser privilege. That means you can give programs and processes only as much privilege as they need and greatly limit your security exposure due to system bugs. A Linux kernel patch fixes some basically broken aspects of capabilities. setcap and getcap let you set and show capabilities of a running process. capexec runs a program with certain capabilities, UID, GID, and supplemental GIDs. It can be used to have init start a daemon with only a subset of init's privileges. binfmt_capx is an executable interpreter in the form of a loadable kernel module. It lets you do a setuid kind of thing for files, only with fine grained capabilities. This is a cheap substitute for real "file capabilities."
ROPE is an open-ended iptables match module that allows rules to be written using a simple but powerful scripting language. It is designed for controlling complex high-level protocols that cannot be blocked using traditional criteria based on port numbers (etc.). Criteria can include tests on any field of the IP, UDP, or TCP headers as well as the packet data payload.
LKMB is a Perl module that can be used to create a kernel module package, that can later be used to create a package that can be bootstrapped on any GNU machine. It is incomplete, but still partially usable. LKMB is part of the Comprehensive Linux Archive Network (CLAN) meta-project.