RSS 11 projects tagged "Security Analysis"

No download Website Updated 06 Feb 2014 confinedrv

Screenshot
Pop 35.24
Vit 9.06

confinedrv creates a new device node /sdx under /dev/mapper which mirrors the given base drive with certain partitions faded out and other partitions limited to read-only or read-write access. It is commonly used to safely boot an existing OS installation with Qemu or any other virtualization software from the same hard disk as the host operating system has been booted from.

Download No website Updated 26 Oct 2013 Password Entropy Calculator

Screenshot
Pop 27.18
Vit 13.31

Password Entropy Calculator is a class that calculates the strength of a password (supplied as a character string) in terms of entropy.

Download No website Updated 03 Apr 2013 ERPXE

Screenshot
Pop 66.48
Vit 1.21

The ERPXE project simplifies the process of installing and customizing a multi-boot PXE server. Over 100 different plugins are available for download, including Windows, WinPE, Hiren’s Boot CD, Acronis True Image, Symantec Ghost, FOG, Ubuntu, Debian, Fedora, CentOS, openSUSE, Gentoo, RIP Linux, Slackware, Backtrack, PartedMagic, and many more.

No download No website Updated 05 Jul 2012 SecQua

Screenshot
Pop 13.53
Vit 25.59

SecQua is a tool that quantifies the security of a given Information System, using a novel security metric. It tries to provide a deterministic, unbiased, objective, and efficient measurement. The approach is vulnerability driven and uses the National Vulnerability Database. A security metric must answer questions such as "How secure am I?", "Am I better compared to my last checkpoint/year?", "Am I spending the right amount of money for security?", "How do I compare to my peers?", and "What risk transfer options do I have?". SecQua can state that a system is now 60.2% secure, when last month it was 46.5%. Moreover, it tries to depict how vulnerability patterns expose the information system over time.

Download No website Updated 23 Mar 2012 Patchman

Screenshot
Pop 28.51
Vit 30.23

Patchman is a patch status monitoring tool for Linux systems. Patchman clients send a list of installed packages and enabled repositories to the server. The server (CLI or Web) tells the user which hosts require updates, whether those updates are normal or security updates, and shows installed packages that are not part of any repository. Hosts, packages, repositories. and operating systems can be filtered using features or arbitrary tags. For example, you can find out which hosts have a certain version of a package installed, and which repository it comes from. Patchman does not (yet) have the ability to update packages on hosts.

Download Website Updated 06 Oct 2011 Suriwire

Screenshot
Pop 50.75
Vit 1.00

Suriwire is a plugin for Wireshark that displays Suricata generated alerts for a pcap file inside the Wireshark output. It adds the alerts to the packet details and in the expert info window. It also enables you to use signature fields as filtering items in Wireshark output.

Download Website Updated 01 Jul 2011 NetSecL ToolSet

Screenshot
Pop 32.37
Vit 1.00

NetSecL ToolSet is a sub-project of NetSecL Linux containing all penetration tools as in the live CD of NetSecL Linux. The goal of this sub-project is to have a minimal Linux distribution in VM with a shh webshell (ajaxterm), no GrSecurity or hardening as in the live CD. After starting the appliance you can use it remotely via ssh or via Web browser.

No download Website Updated 01 Feb 2010 SCARE

Screenshot
Pop 35.21
Vit 39.23

SCARE (Source Code Analysis Risk Evaluation) analyzes source code and provides a realistic and factual representation of the potential of that source code to create a problematic binary. This metric will not say that the binary will be exploited, nor does it do a static analysis for known limitations like vulnerabilities. However, it will flag code for a particular interaction type or control and allow the developer to understand which operational security (OpSec) holes are not protected even if it can't say the effectiveness of that protection at this time.

Download Website Updated 18 Dec 2009 VICTORIA

Screenshot
Pop 25.77
Vit 39.80

VICTORIA is a support tool for the management of security. It allows you to assess the status and degree of development of security in an automated manner.

No download No website Updated 30 May 2013 Obeseus

Screenshot
Pop 27.20
Vit 40.36

Obeseus is a DDoS attack detector designed for use by ISPs. It detects TCP floods (SYN/RST), fragment floods, raw ICMP/TCP/UDP floods, and BOGON misuse. It also detects application level floods in HTTP and UDP.

Screenshot

Project Spotlight

LaunchControl

A fully-featured launchd front-end for managing and debugging system and user services.

Screenshot

Project Spotlight

Multi-OTP

A PHP class to authenticate and manage OTP user tokens for strong authentication.