ctunnel is a program for tunneling and proxying TCP or UDP connections via a cryptographic tunnel. ctunnel can be used to secure any existing TCP or UDP based protocol, such as HTTP, Telnet, FTP, RSH, MySQL, VNC, DNS, XDMCP, NFS, etc. You can also chain or bounce connections to any number of intermediary hosts.
Tor-ramdisk is a uClibc-based micro Linux distribution whose only purpose is to host a Tor server in an environment that maximizes security and privacy. Tor is a network of virtual tunnels that allows people and groups to improve their privacy and security on the Internet. Security is enhanced in tor-ramdisk by employing a monolithically compiled GRSEC/PAX patched kernel and hardened system tools. Privacy is enhanced by turning off logging at all levels so that even the Tor operator only has access to minimal information. Finally, since everything runs in ephemeral memory, no information survives a reboot, except for the Tor configuration file and the private RSA key, which may be exported and imported by FTP or SSH.
For high traffic Web sites, Proto Balance Advanced provides connection rate limiting per second and limits the total number of connections. Both are done on a per-client basis. It has a complete Web configuration interface. The IP address of each connecting Web browser is recorded along with its connection stats. It is scalable to millions of clients and handles 10,000 concurrent connections. It performs server backend load balancing with an on-the-fly capability to add and remove servers. Daily and weekly traffic graphs are shown.
Proto Balance SSL negotiates an SSL connection and forwards the plain HTTP connection to your Web server. Certificate management like request generation, vendor certificate installation, and key generation are all done from an easy-to-use Web interface. It load balances connections over multiple Web servers. It performs 1000 SSL transaction per second. Traffic management and on-the-fly redirection of traffic. On-the-fly adding and removal of servers. Traffic accounting and client-connection-rate limits. Denial of server protection. Layer 7 inspection and X-Forwarded-For support.
GreenSQL is a database firewall used to protect databases from SQL injection attacks. GreenSQL works in a proxy mode and has built-in support for MySQL. The logic is based on evaluation of SQL commands using a risk scoring matrix, as well as blocking known DB administrative commands (such as DROP and CREATE).
AppSamurai is a mod_perl based system to protect vulnerable or sensitive Web applications. The target use is in reverse proxy configurations, with an Apache/mod_perl reverse proxy inside a DMZ and a backend Web server in another DMZ or an internal network. AppSamurai's features include a modular, multi-factor authentication system, form based or basic auth based logins, encrypted storage of session data on a proxy, the ability to use any Apache::Session storage type (including databases for clustered deployment), and the ability to configure it from httpd.conf.
PhishBouncer is an anti-phishing platform based on an HTTP/HTTPS proxy integrating anti-phishing checks that do not depend on block lists or Phish signatures. The checking algorithms make use of the attributes of the Web site being visited, the structure and properties of the referring URL, and the Web site's association with other legitimate Web sites that the user interacts with. The checks are implemented as plug-in interceptors, and it is easy to modify them and add or remove new checks.
Cyan Secure Web Proxy Server is a carrier grade, high performance Internet filtering proxy server for Linux. It includes scalable (user/group/host) Web filter and virus scan utilities for blocking malicious applications at the gateway. It has an advanced URL database, authentication support (Active Directory, LDAP, NTLM), SSL Interception, easy deployment, and remote administration.