Sentinel is a fast file scanner similar to Tripwire or Viper with built in authentication using the RIPEMD 160 bit MAC hashing function. It uses a single database similar to Tripwire, maintains file integrity using the RIPEMD algorithm and also produces secure, signed logfiles. Its main design goal is to detect intruders modifying files. It also prevents intruders with root/superuser permissions from tampering with its log files and database. Disclaimer: this is not a security toolkit. It is a single purpose file/drive scanning program. Available versions are for linux (tested on all current Slackware and RedHat releases), with Irix versions soon to be added on.
twonz is a small Perl/TK program which lets you generate and manage the endless quantities of passwords you may need to get anything done online. Rather than making an encrypted database or anything, it just calculates a secure hash of obvious information appended to a user-supplied pad. So you only have to remember the pad, and none of your passwords are actually stored anywhere at all.
PGP Pipe allows encrypting a data stream of arbitrary length with the IDEA chipher from PGP. It is fast and usefull for secure backups on tapes or across the network. To prevent that this program is considered "strong cryptography", the encryption routines are NOT included, so you have to get the PGP source to compile it.
Strip is a password and account management program for the Palm Computing Platform. Designed to fit the needs of both IT professionals and the average user, it combines ease of use with flexibility and security. 128 bit encryption ensures that even if your Palm Pilot is lost or stolen your important account and password information will remain confidential. Strip has a quick and easy to use interface, with many useful features including the ability to beam shared accounts to other Strip users.
userv is a Unix system facility to allow one program to invoke another when only limited trust exists between them. It is a tool for system administrators, who often find themselves with a program running as one user which needs to be able to do certain things as another user. For example, the author's machine's news system needs to scan its users' newsrcs to ensure that the right newsgroups are fetched. Before userv that part of the news system had to run as root, and clumsily use `su'.
Swatch was originally written to actively monitor messages as they were written to a log file via the UNIX syslog utility. It has multiple methods of alarming, both visually and by triggering events. The perfect tools for a master loghost. It is known to work flawlessly on Linux (RH5), BSDI, and Solaris 2.6 (patched).
boclient is a remote windows administation tool which uses BackOrifice or NetBus servers on Windows. It is an improvement of version 1.21. Most recent versions have GNU readline support, NetBus commands, portability to other platforms (BeOS, QNX and 64bit architectures like Alpha) and async network I/O.
LOMAC uses Low Water-Mark Mandatory Access Control to protect the integrity of processes and data from viruses, trojan horses, malicious remote users, and compromised network server daemons. The LOMAC loadable kernel module can be used to harden Linux systems without any changes to existing kernels, applications, or configuration files. Due to its simplicity, LOMAC itself requires no configuration, regardless of the users and applications present on the system. Although some features and fixes remain to be implemented, LOMAC presently provides sufficient protection to thwart some attacks, and is stable enough for everyday use.
dirtypgp is a quick-and-dirty wish script to run in a X Window environment. It is a workslate upon which clear or cipher text may be cut and pasted. A series of button controls then are used to convert to and from ciphered and clear text, encoded with the PGP package. It was originally written by Carsten Meyer, who released it under the GPL.