AntiJOP is an anti-malware solution that recodes assembly language to remove JOP attack gadgets. JOP attacks on x86 often hinge on the availability of 0xFF bytes in preexisting code, which can be co-opted to serve as register-indirect call instructions. AntiJOP removes instances of 0xFF bytes that may exist, for example, in immediate values, MOD/RM bytes, etc.
debcheckroot is a tool that retrieves file checksums online or from read only media. It provides trusted verification of your root file system at least as far as you can trust your Internet connection or your verification medium (DVD, BD, etc.). Unlike debsums, it doesn't rely on locally stored md5sums which can be modified by an attacker along with the files themselves. It also provides cleaner and better structured output, and can spot files added to your system by someone else.
Spiderinabox provides an out-of-the-box solution for secure browsing on Mac systems. It includes a basic preconfigured installation of OpenBSD prepared as a VirtualBox image loaded with Firefox and a few scripts and programs to launch it and invoke Firefox over a secure connection. The visualization of Firefox is done on the OS X side using XQuartz, so you don't need to exit your working environment and switch between OS X and OpenBSD. Firefox runs encapsulated in OpenBSD and doesn't have access to OS X in any way.
Site Change Detection is a class that scans a directory to detect file changes. It performs an initial scan of a given directory and records the names and hashes of files found in a MySQL database. Subsequent scans detect any files that were added, changed, or deleted. The class can also setup the database tables to perform the initial configuration.
php_mt_seed finds possible seeds given the very first PHP mt_rand() output after possible seeding with mt_srand(). With advanced invocation modes, php_mt_seed is also able to match multiple, non-first, and/or inexact mt_rand() outputs to possible seed values. php_mt_seed is written in C with optional SIMD intrinsics (SSE4.1/AVX, XOP, AVX2, MIC) and OpenMP. On a modern quad-core CPU, it is able to search the full 32-bit seed space in one minute (or in just seven seconds on Xeon Phi).
skd is a tool for the simple distribution of SSH keys in a growing environment. It allow you to create hosts, group them, and link that group a group of users with keys to easily distribute all affected keys. skd generates a DSA or RSA keypair, which is saved to its database and used as the authentication source for skd itself. This keypair can (and should be) additionally be encrypted using a passphrase. This allows you to simply add a user with their key and press one button to grant (and revoke!) the user's access to all needed hosts.