Bandit is a system of loosely-coupled components that provide consistent identity services and create a community that organizes and standardizes identity-related technologies in an open way, promoting both interoperability and collaboration. It implements open standard protocols and specifications so identity services can be constructed, accessed, and integrated from multiple identity sources. The Bandit system supports many authentication methods and provides user-centric credential management.
MSNgrep is a script to capture MSN Messenger conversations. It uses pylibpcap to sort through MSN's jumble of packets for instant messages, a few status messages, and TypingUser notifications. Using these, it builds up a database of email addresses to MSN server addresses, and local IP addresses. This lets it match up an instant message to the sender's email address, and the receiver's email address.
libmrtd is a library to read and verify information contained in electronic Passports compliant with the ICAO (International Civil Aviation Organization) MRTD (Machine Readable Travel Document) specification. This basically includes all RFID and biometrically enhanced passports issued worldwide.
Raiden is an extremely lightweight and fast block cipher, developed using genetic programming. Its aims are to be simple enough to be remembered by heart and to be compact, highly portable, and light enough to be implemented in resource constrained environments. It was developed with the intention of being an alternative to TEA, with the same speed and without any of its known weaknesses.
Foremost is a console program that recovers files based on their headers, footers, and internal data structures. This process is commonly referred to as data carving. Foremost can work on image files, such as those generated by dd, Safeback, Encase, etc., or directly on a drive. The headers and footers can be specified by a configuration file, or you can use command line switches to specify built-in file types. These built-in types look at the data structures of a given file format, allowing for a more reliable and faster recovery. It was originally developed by the United States Air Force Office of Special Investigations and The Center for Information Systems Security Studies and Research.
Suricata is an Intrusion Detection and Prevention (IDS/IPS) engine developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded and has native IPv6 support, file extraction capabilities, and many more features. It's capable of loading existing Snort rules and signatures, and supports many frontends through Barnyard2.
Webfwlog is a Web-based firewall log reporting and analysis tool. It allows users to design reports to use on logged firewall data in whatever configuration they desire. Included are sample reports as a starting point. Reports can be sorted with a single click, or "drilled-down" all the way to the packet level, and saved for later use. Supported log formats are netfilter, ipfilter, ipfw, ipchains, Cisco routers, Snort, and Windows XP. Netfilter support includes ulogd MySQL or PostgreSQL database logs using the iptables ULOG or NFLOG target.
Firekeeper is an intrusion detection and prevention system for Firefox. It is able to detect, block and warn the user about malicious sites. Firekeeper uses flexible rules similar to Snort ones to describe browser-based attack attempts. Rules can also be used to effectively filter different kinds of unwanted content.
The ipoque PRX traffic manager effectively detects and controls all major peer-to-peer (P2P) filesharing, instant messaging (IM), and Voice over IP (VoIP) protocols. Bandwidth and volume limits can be assigned to network links, subnets, individual users, and user groups. Detailed usage statistics are provided and can be exported for post-processing. This community edition is a fully functional version with a bandwidth limit of 2 Mbit/s.