Security Tools News & Tips

Turtle Firewall is a software which allows you to realize a Linux firewall in a simply and fast way. It’s based on Kernel 2.4.x/2.6.x and Iptables. Its way of working is easy to understand: you can define the different firewall elements (zones, hosts, networks) and then set the services you want to enable among the different elements or groups of elements. You can do this simply editing a XML file or using the comfortable web interface Webmin. Turtle Firewall is an Open Source project written using the perl language and realeased under GPL version 2.0 by Andrea Frigido (Frisoft).

• More information or Read user reviews...(1)

The Firewall Tester (FTester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities. The tool consists of two perl scripts, a packet injector (ftest) and the listening sniffer (ftestd). The first script injects custom packets, defined in ftest.conf, with a signature in the data part while the sniffer listens for such marked packets. The scripts both write a log file which is in the same form for both scripts. A diff of the two produced files (ftest.log and ftestd.log) shows the packets that were unable to reach the sniffer due to filtering rules if these two scripts are ran on hosts placed on two different sides of a firewall. Stateful inspection firewalls are handled with the ‘connection spoofing’ option. A script called freport is also available for automatically parse the log files.

• More information or Write a review...(0)

Norton Smartphone Security Premier Edition (Beta) keeps your Windows Mobile 5.0 PocketPC, and Windows Mobile 5.0 Smartphone based smartphones safe. It offers: Antivirus protection: Symantec’s award-winning antivirus technology has been applied to smartphones to protect against mobile malware. AntiSpam for SMS: SMS spam messages are automatically placed in spam folder or deleted. Firewall: Controls inbound and outbound network traffic on the smartphone. Personal Data Protection: Automatically encrypt My Documents on logout. Device Password Protection: Require a password before accessing the smartphone and self-service password reset is done via a challenge question.

• More information or Write a review...(0)

BlockSSHD is a Perl script based on BruteForceBlocker v1.2.3 that dynamically adds IPTables rules for Linux and pf firewall rules for BSD that block SSH brute force attacks. It can also detect ProFTPd login failures. BlockSSHD checks a log file you specify, for example /var/log/secure on a Red Hat, for SSH login failure messages. If it detects a failure message it records the source IP address and starts a counter. If messages continue to be detected from the same source IP address the counter is incremented for each message. When the counter reaches a user-specified threshold then the script will add a firewall rule blocking SSH connections from that source IP address. A user-specified time-out is also defined to trigger a reset of the counter. If the counter is incremented but has not yet reached the blocking threshold and a new login failure message arrives then BlockSSHD checks the time-out. If the last increment of the counter occurred earlier than the current time minus the time-out period then the counter is reset rather than incremented. The time-out defaults to 600 seconds (10 minutes).

• More information or Write a review...(0)

Fail2ban scans log files like /var/log/pwdfail or /var/log/apache/error_log and bans IP that makes too many password failures. It updates firewall rules to reject the IP address. These rules can be defined by the user. Fail2ban can read multiple log files such as sshd or Apache web server ones. Fail2ban is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation.

• More information or Write a review...(0)

Trend Micro OS Protection is a security enhancement package for Windows Vista users running Trend Micro Internet Security. This package provides two enhancements: Firewall Booster and Pre-Startup Scan. Firewall Booster allows Trend Micro Internet Security to take advantage of the capabilities of the Windows Vista firewall. It enhances your protection against Web threats and unauthorized access. Most security threats, like many programs, run on Windows. Pre-Startup Scan finds and eliminates viruses and spyware before Windows starts – before these threats can affect your computer and thwart attempts to remove them.

• More information or Write a review...

OpenBSD Packet Filter is a firewall tool for OpenBSD. It supports stateful packet filtering, Network Address Translation (NAT), port forwarding, passive operating system fingerprinting, packet queueing and Quality of Service, load balancing, and redundant firewalls. PF is known to be a proven, high-performance, and innovative packet filtering system. The PF sub-systems and related interfaces have been ported to the NetBSD, FreeBSD and DragonFly operating systems.

• More information or Write a review...(0)

Netfilter is a Linux kernel packet filter/firewall. It is the re-designed and heavily improved successor of the previous Linux 2.2.x ipchains and Linux 2.0.x ipfwadm systems. With the Netfilter you can build internet firewalls based on stateless and stateful packet filtering, use NAT and masquerading for sharing internet access if you don’t have enough public IP addresses, use NAT to implement transparent proxies, aid the tc and iproute2 systems used to build sophisticated QoS and policy routers and do further packet manipulation (mangling) like altering the TOS/DSCP/ECN bits of the IP header.

• More information or Write a review...(0)

The FortiGate-50B, 60-series, 100A, 200A and 300A model Multi-Threat Security systems are the ultimate all-in-one, network-based solution to protect smaller deployments from blended threats. These easy-to-deploy and easy-to-administer systems deliver exceptional value and performance for small offices, home offices, small and medium sized businesses and branch office applications. With a complete complement of security services - including firewall, VPN, intrusion prevention, antivirus, web filtering, and traffic shaping - a wide range of organizations can now enjoy complete protection from the most damaging threats without penalties in performance, cost, or manageability. With models ranging in throughput from 30Mbps to 200Mbps, FortiGate-50B, 60-series, 100A, 200A and 300A can enable organizations to stay connected and protected against network-based threats. Sonicwall and Netscreen also offer all-in-one hardware firewalls for SMEs.

• More information or Write a review...

WatchGuard firewall and VPN appliances deliver the complete unified threat management (UTM), with built-in zero day protection, good performance, ease of use, and value for your growing network. The fully integrated security services give continually updated, multifaceted network protection from spyware, spam, viruses, worms, trojans, Web-based exploits, and blended threats. Watchguard firewalls run security-hardened Linux-based operating system and their gateway anti-virus is powered by ClamAV.

• More information or Write a review...