samhain is a daemon that can check file integrity, search the file tree for SUID files, and detect kernel module rootkits (Linux only). It can be used either standalone or as a client/server system for centralized monitoring, with strong (192-bit AES) encryption for client/server connections and the option to store databases and configuration files on the server. For tamper resistance, it supports signed database/configuration files and signed reports/audit logs. It has been tested on Linux, FreeBSD, Solaris, AIX, HP-UX, and Unixware.
MIMEDefang is a flexible MIME email scanner designed to do all kinds of email processing, including anti-virus scanning, anti-spam scanning, replacing parts of messages with URLs, adding boilerplate disclaimers, and so on. It can alter or delete various parts of a MIME message according to a Perl-based policy filter. It can also bounce messages with unacceptable attachments and modify SMTP response codes on the fly. It works with the Sendmail 8.11 and newer "Milter" API, which makes it more flexible and efficient than procmail-based approaches.
edtFTPj/PRO is a Java library that performs secure file transfers. It supports FTPS (FTP over SSL), both explicit and implicit modes, and SFTP (FTP via SSH). It also supports asynchronous transfers and FTP connection pools. All major FTP operations are supported, including both active and passive modes. It provides a progress monitor interface, allowing applications to receive progress updates for their file transfers. The library is built on the open source edtFTPj and shares its API. It is compatible with Android 1.5 and above.
CryptoHeaven offers secure email and online file sharing/storage. Its main features are secure and highly encrypted services such as group collaboration, file sharing, email, online storage, and instant messaging. It integrates multi-user based security into email, instant messaging, and file storage and sharing in one unique package. It provides real time communication for text and data transfers in a multi-user secure environment. The security and usability of CryptoHeaven is well-balanced; even the no-so-technically oriented computer users can enjoy this crypto product with very high level of encryption.
GnuTLS is a secure communications library implementing the SSL, TLS, and DTLS protocols and technologies around them. It provides a simple C language application programming interface (API) to access the secure communications protocols, as well as APIs to parse and write X.509, PKCS #12, OpenPGP, and other required structures. It is intended to be portable and efficient with a focus on security and interoperability.
The MD5 message digest library implements the MD5 message digest algorithm specified in RFC 1321 directly from the specification, without copying from the reference implementation and therefore without requiring mention of RSA when used. It uses the same unrestricted-distribution license as zlib.
GNUnet is a peer-to-peer framework with focus on providing security. All peer-to-peer messages in the network are confidential and authenticated. The framework provides a transport abstraction layer and can currently encapsulate the network traffic in UDP, TCP, HTTP, HTTPS, or direct 802.11 (WLAN). GNUnet supports accounting to provide contributing nodes with better service. The services built on top of the framework include anonymous file sharing and a virtual network providing IPv4-IPv6 transition via protocol translation over the P2P network.
KOSd is a modified version of Ascend's RADIUS (derived from Livingston's) daemon that supports GECOS password files in another location than /etc/passwd. The path to the file is configurable in a C file. It's great for segmenting dial-in and email-only users on a dialing pool, supporting both Max units and Xylogics (now Bay) servers from a single password file, and probably others. It will probably work with Cisco or Livingston servers as well by changing the dictionary file and turning off the -DASCEND extensions within the makefile, but you may need to experiment. This product is totally unsupported.
P-Synch is a commercial password management toolkit which provides automated password synchronization, password strength enforcement, password self-reset by authenticated users, and streamlined password reset by helpdesk. P-Synch is available for both internal use as well as for Internet-based deployments in B2B and B2C applications.