Security Tools News & Tips

SolarWinds, a leading provider of Windows-based network monitoring tools and network discovery and network management software, enables network engineers to reduce network downtime, monitor network performance, manage compliancy requirements, perform bulk configuration changes and improve staff efficiency. Security-related tools include many network discovery scanners, an SNMP brute-force cracker, router password decryption, a TCP connection reset program, one of the fastest and easiest router config download/upload applications available and more.

• More information or Write a review...(0)

SurfControl solutions provide continuous protection against the Web, e-mail and desktop-based threats, from viruses and phishing attacks to inappropriate use of system resources to regulatory non-compliance. In providing this protection, it offers you the choice of where in your network environment you want to deploy these solutions: on the desktop, on the network (as software or an appliance), or in the Internet cloud. By implementing solutions through layered deployments, you yield tremendous savings in network resources, bandwidth and overall administration, while ensuring that your unique security and compliance requirements are most efficiently met. Websense is another popular solutions that provides similar service except the email filtering.

• More information or Read user reviews...(1)

The Honeywall CDROM is a bootable CD that copies all the functionality of a Honeywall onto a hard drive. It comes with all the tools and functionality for you to implement data capture, data control, and data analysis. It creates an architecture that allows you to deploy both low-interaction and high-interaction honeypots within it. The purpose of the Honeywall CDROM is to make it easier to deploy, manage, and derive value from honeynet technologies. The CDROM supports several configuration methods, including an interactive menu and .iso customization scripts. The CDROM is an appliance, based on a minimized and secured Linux OS.

• More information or Write a review...(0)

Fragroute intercepts, modifies, and rewrites egress traffic destined for a specified host, implementing most of the attacks described in the Secure Networks “Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection” paper of January 1998. It features a simple ruleset language to delay, duplicate, drop, fragment, overlap, print, reorder, segment, source-route, or otherwise monkey with all outbound packets destined for a target host, with minimal support for randomized or probabilistic behaviour. This tool was written in good faith to aid in the testing of network intrusion detection systems, firewalls, and basic TCP/IP stack behaviour. Please do not abuse this software.

• More information or Write a review...(0)

Arudius is an information assurance (IA) Linux live CD with tools for penetration testing and vulnerability analysis. Information assurance has many other aspects besides network security. The CD consists of a Zenwalk Linux base on top of which a large collection of network security testing software (full list) has been installed – including tools listed on Insecure.org Top 75 list plus many other tools listed on Freshmeat, Sf.net and other information assurance sites around the world.

• More information or Write a review...(0)

P0f is an advanced passive OS/network fingerprinting utility for use in IDS environments, honeypots environments, firewalls and servers. P0f is able to identify the operating system of a target host simply by examining captured packets even when the device in question is behind an overzealous packet firewall. It does not generate ANY additional network traffic, direct or indirect. No name lookups, no mysterious probes, no ARIN queries, nothing.

• More information or Write a review...(0)

WinDump is the Windows version of tcpdump, the command line network analyzer for UNIX. WinDump is fully compatible with tcpdump and can be used to watch, diagnose and save to disk network traffic according to various complex rules. It can run under Windows 95, 98, ME, NT, 2000, XP, 2003 and Vista. WinDump is free and is released under a BSD-style licence.

• More information or Write a review...(0)

Text-based packet sniffer for Unix and Windows hosts. Based loosely on the original Sun ’snoop’ tool, TCPDump uses libpcap and filtering rules to capture network traffic. TCPDump is a command line utility and doesn’t have GUI like ethereal, but it does the job well and usually have fewer bugs and security holes.

• More information or Read user reviews...(1)

tcpxtract is a tool for extracting files from network traffic based on file signatures. Extracting files based on file type headers and footers (sometimes called “carving”) is an age old data recovery technique. Tools like Foremost employ this technique to recover files from arbitrary data streams. Tcpxtract uses this technique specifically for the application of intercepting files transmitted across a network.

• More information or Write a review...(0)

Ettercap is a multipurpose sniffer/interceptor/logger for switched LAN. It supports active and passive dissection of many protocols (even ciphered ones) and includes many feature for network and host analysis. It is capable of intercepting traffic on a network segment, capturing passwords, and conducting man-in-the-middle attacks against a number of common protocols.

• More information or Write a review...(0)