Section: .. / linux / security /
| /// File Name: |
rsbac-common-1.3.4.tar.bz2 |
Description:
|
Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
| | Homepage: | http://www.rsbac.org | | Changes: | See changelog. | | File Size: | 367947 | | Last Modified: | Jun 7 02:40:36 2007 |
| MD5 Checksum: | d87034b927b71203437cbdcb776a9df9 |
|
| /// File Name: |
rsbac-common-1.3.5.tar.bz2 |
Description:
|
Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
| | Homepage: | http://www.rsbac.org | | Changes: | Fixed compilation issue, various other tweaks. | | File Size: | 367814 | | Last Modified: | Jul 20 02:14:46 2007 |
| MD5 Checksum: | c5cc66633c3de30d334929309ef707f6 |
|
| /// File Name: |
rsbac-common-1.3.3.tar.bz2 |
Description:
|
Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
| | Homepage: | http://www.rsbac.org | | Changes: | Various updates and code fixes. | | File Size: | 367537 | | Last Modified: | May 15 02:55:21 2007 |
| MD5 Checksum: | 82af3502ef2eab1bc4b40a86505deced |
|
| /// File Name: |
poldi-0.4.tar.bz2 |
Description:
|
Poldi is a PAM module that implements authentication through the OpenPGP smart card. It uses the smart card daemon from the GnuPG project for smart card access.
| | Author: | Moritz Schulte | | File Size: | 367470 | | Last Modified: | Aug 13 01:10:14 2008 |
| MD5 Checksum: | 5a0312c3124e3dbb558a24f1017c169c |
|
| /// File Name: |
rsbac-common-1.3.1.tar.bz2 |
Description:
|
Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
| | Homepage: | http://www.rsbac.org | | Changes: | Various updates and code fixes. | | File Size: | 363596 | | Last Modified: | Jan 13 19:35:02 2007 |
| MD5 Checksum: | a7989821227c60210fd9321f45afc01d |
|
| /// File Name: |
rsbac-common-1.3.0.tar.bz2 |
Description:
|
Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
| | Homepage: | http://www.rsbac.org | | Changes: | Various updates and code fixes. | | File Size: | 361402 | | Last Modified: | Oct 18 19:59:23 2006 |
| MD5 Checksum: | 045b8ce1b4db9cbd87535a3949f56b8d |
|
| /// File Name: |
SAStk-0.1.1.tar.gz |
Description:
|
SAStk (Slackware Administrators Security tool kit) aims to provide a set of tools and utilities to install and maintain a reasonable level of security for the Slackware GNU/Linux distribution. At the same time, it should ease administration with a new centralized initialization setup and background information on what each daemon does.
| | Homepage: | http://sourceforge.net/projects/sastk | | File Size: | 352639 | | Last Modified: | Feb 6 15:32:59 2001 |
| MD5 Checksum: | 31ae891b30c7596bc412a9ab6b6570b3 |
|
| /// File Name: |
zm-0.9.16.tar.gz |
Description:
|
ZoneMinder is a suite of applications intended for use in video camera security applications, including theft prevention and child or family member monitoring. It supports capture, analysis, recording, and monitoring of video data coming from one or more cameras attached to a Linux system. It also features a user-friendly Web interface which allows viewing, archival, review, and deletion of images and movies captured by the cameras. The image analysis system is highly configurable, permitting retention of specific events, while eliminating false positives. ZoneMinder supports both directly connected and network cameras and is built around the definition of a set of individual 'zones' of varying sensitivity and functionality for each camera. This allows the elimination of regions which should be ignored or the definition of areas which will alarm if various thresholds are exceeded in conjunction with other zones. All management, control, and other functions are supported through the Web interface.
| | Author: | Philip Coombes | | Homepage: | http://www.zoneminder.com | | File Size: | 349982 | | Last Modified: | Dec 18 00:20:01 2003 |
| MD5 Checksum: | 63616a18a657766bea4b3a8eaf262f56 |
|
| /// File Name: |
rsbac-common-1.2.5.tar.bz2 |
Description:
|
Rule Set Based Access Control (RSBAC) is an open source security extension for current Linux kernels. It is based on the Generalized Framework for Access Control (GFAC) and provides a flexible system of access control implemented with the help of a kernel patch. All security relevant system calls are extended by security enforcement code. This code calls the central decision component, which in turn calls all active decision modules and generates a combined decision. This decision is then enforced by the system call extensions.
| | Homepage: | http://www.rsbac.org | | Changes: | Huge amount of bug fixes. | | File Size: | 349424 | | Last Modified: | Sep 27 18:53:35 2005 |
| MD5 Checksum: | cb643700dafea41bbd7c2a2e3a1b0df3 |
|
| /// File Name: |
pam_p11-0.1.4.tar.gz |
Description:
|
Pam_p11 is a pluggable authentication module (PAM) package for using cryptographic tokens such as smart cards and USB crypto tokens for authentication. Pam_p11 is very simple, as it has no config file, no options other than the PKCS#11 module file, and does not know about certificate chains, certificate authorities, revocation lists, or OCSP. There is one module that uses the $HOME/.eid/authorized_certificates file (like the old pam_opensc did) and one module that uses the $HOME/.ssh/authorized_keys file (like ssh does).
| | Homepage: | http://www.opensc-project.org/pam_p11/ | | Changes: | Various fixes. See changelog. | | File Size: | 343208 | | Last Modified: | Jul 31 18:48:08 2008 |
| MD5 Checksum: | eee73804eaf2ef77e18cf6a777009509 |
|
| /// File Name: |
pam_p11-0.1.3.tar.gz |
Description:
|
Pam_p11 is a pluggable authentication module (PAM) package for using cryptographic tokens such as smart cards and USB crypto tokens for authentication. Pam_p11 is very simple, as it has no config file, no options other than the PKCS#11 module file, and does not know about certificate chains, certificate authorities, revocation lists, or OCSP. There is one module that uses the $HOME/.eid/authorized_certificates file (like the old pam_opensc did) and one module that uses the $HOME/.ssh/authorized_keys file (like ssh does).
| | Homepage: | http://www.opensc-project.org/pam_p11/ | | File Size: | 333427 | | Last Modified: | Jul 18 00:50:13 2007 |
| MD5 Checksum: | 4b0aad2a4d5d30599597dbc2f09e3b64 |
|
| /// File Name: |
pam_p11-0.1.2.tar.gz |
Description:
|
Pam_p11 is a pluggable authentication module (PAM) package for using cryptographic tokens such as smart cards and USB crypto tokens for authentication. Pam_p11 is very simple, as it has no config file, no options other than the PKCS#11 module file, and does not know about certificate chains, certificate authorities, revocation lists, or OCSP. There is one module that uses the $HOME/.eid/authorized_certificates file (like the old pam_opensc did) and one module that uses the $HOME/.ssh/authorized_keys file (like ssh does).
| | Homepage: | http://www.opensc-project.org/pam_p11/ | | File Size: | 313774 | | Last Modified: | Nov 2 21:16:21 2005 |
| MD5 Checksum: | de550f9d7cf921a7b8e35901e6bbfa25 |
|
| /// File Name: |
libsafe-1.3.tgz |
Description:
|
The libsafe library protects a process against the exploitation of buffer overflow vulnerabilities in process stacks. Libsafe works with any existing pre-compiled executable and can be used transparently, even on a system-wide basis. It works by putting a wrapper around dangerous functions that contain any buffer overflows within the current stack frame, so that the return address can not be changed.
| | Author: | Navjot Singh | | Homepage: | http://www.bell-labs.com/org/11356/libsafe.html | | File Size: | 296807 | | Last Modified: | Apr 21 22:01:58 2000 |
| MD5 Checksum: | c79bdb6059d2dd5fa2ec14be46f44d2f |
|
| /// File Name: |
rsbac-admin-1.2.5.tar.bz2 |
Description:
|
Admin tools for the Rule Set Based Access Control (RSBAC) system. Includes log viewers, special patches, nss and pam related functionality, and more.
| | Homepage: | http://www.rsbac.org | | File Size: | 279064 | | Last Modified: | Sep 27 18:54:58 2005 |
| MD5 Checksum: | 12560426f1724b5b140e661547356260 |
|
| /// File Name: |
enforcer-0_3_ALPHA.tar.gz |
Description:
|
Enforcer is a Linux security module designed to help improve integrity by providing a subset of Tripwire-like functionality with a LKM. It runs continuously and as each protected file is opened its SHA1 is calculated and compared to a previously stored value. The Enforcer can integrate with TCPA hardware to provide a secure boot when booted with a TCPA enabled boot loader.
| | Homepage: | http://enforcer.sourceforge.net | | Changes: | This release only works with 2.6+ because updates were made to take advantage of Linux 2.6+ kernel features such as native kernel crypto and the new build system. Some bugs were squashed, and some features were added. A user-space helper was written to mount an encrypted loopback filesystem where the encryption key is the secret protected by the TPM. Some stand alone programs that implement TCPA functions such as MakeIdentity, CertifyKey, etc. were written. | | File Size: | 249755 | | Last Modified: | Dec 14 17:53:56 2003 |
| MD5 Checksum: | bfb914e98cf37292ffa871337b3f58f2 |
|
| /// File Name: |
syscalltrack-0.71.tar.gz |
Description:
|
Syscall Tracker is a very powerful tool for Linux 2.2 and 2.4 which allows you to write rules to track system calls. It includes a kernel module plus a userspace applications. Currently only logging the invocation is supported, but in the future, you will be able to fail the system call (i.e. force it to return some error code), or suspend the process executing it. Allows you find out info that is hard to find, for instance to determine which process touched a certain file.
| | Homepage: | http://syscalltrack.sourceforge.net | | Changes: | Support was added for constants when specifying matching rules, for example, O_RDONLY, O_EXCL, and friends for open(2). Support was added for octal/hex numbers in filter expressions. Assorted internal cleanups, code refactoring, bugfixes, and memory leak plugs were done. | | File Size: | 248656 | | Last Modified: | Jun 3 00:26:20 2002 |
| MD5 Checksum: | 5541a2534f5976c0cf6b8469b82fa032 |
|
| /// File Name: |
sysmask-1.08.tgz |
Description:
|
Sysmask is a security package for Linux systems that can prevent arbitrary malicious codes from causing permanent damage. It protects the system against daemon exploits and user accounts against viruses and worms, whether known or unknown, without requiring the recompilation of existing software.
| | Author: | XIAO Gang | | Homepage: | http://wims.unice.fr/sysmask/doc/index.html | | Changes: | Kernel patch update for 2.6.17.13 and 2.4.33.3. Fixed malformed kernel patch problem. | | File Size: | 226076 | | Last Modified: | Oct 4 23:56:57 2006 |
| MD5 Checksum: | 065a77e7fef6c08ad0d590c084610ab2 |
|
| /// File Name: |
syscalltrack-0.70.tar.gz |
Description:
|
Syscall Tracker is a very powerful tool for Linux 2.2 and 2.4 which allows you to write rules to track system calls. It includes a kernel module plus a userspace applications. Currently only logging the invocation is supported, but in the future, you will be able to fail the system call (i.e. force it to return some error code), or suspend the process executing it. Allows you find out info that is hard to find, for instance to determine which process touched a certain file.
| | Homepage: | http://syscalltrack.sourceforge.net | | Changes: | Supports a type-cast for 'struct' syscall parameters (useful for socket calls), 'fail syscall' actions, convenience-macros in rule config files, experimental device-driver control support, 'log_format' definition per rule, and some new syscalls (waitpid, close, creat). Major bugfixes include fixes for white-space parsing, a small memory leak when deserializing 'log' actions, and a bug in the kernel module that could leave dangling function pointers. | | File Size: | 225097 | | Last Modified: | Feb 26 22:56:09 2002 |
| MD5 Checksum: | c1af0ff5ce13f54b26696efca2642ecb |
|
| /// File Name: |
lkl-0.1.0.tar.gz |
Description:
|
LKL is a userspace keylogger that runs under linux x86/arch. LKL logs everything which passes through the hardware keyboard port (0x60). Keycode to ASCII translation is supported.
| | Author: | Carlo Comin | | Homepage: | http://www.spine-group.org/tool.htm | | Changes: | PS2 bug fixed, addition of US, French, and Dvorak keymaps. | | File Size: | 224804 | | Last Modified: | Aug 26 00:23:14 2003 |
| MD5 Checksum: | 249c2025295f1227f8cd660f7775d2f4 |
|
| /// File Name: |
lkl-0.0.4.tar.gz |
Description:
|
LKL is a userspace keylogger that runs under linux x86/arch. LKL logs everything which passes through the hardware keyboard port (0x60). Keycode to ASCII translation is supported.
| | Author: | Carlo Comin | | Homepage: | http://www.spine-group.org/tool.htm | | Changes: | Email feature added, code clean-up, debugging added, and more comments in the source code. | | File Size: | 223896 | | Last Modified: | Apr 21 14:25:42 2003 |
| MD5 Checksum: | f29bad21431551f7fae8ca8052e07638 |
|
| /// File Name: |
lkl-0.0.2.tar.gz |
Description:
|
LKL is a userspace keylogger that runs under linux x86/arch. LKL logs everything which passes through the hardware keyboard port (0x60). Keycode to ASCII translation is supported.
| | Author: | Carlo Comin | | Homepage: | http://www.spine-group.org/tool.htm | | File Size: | 222277 | | Last Modified: | Apr 18 04:11:50 2003 |
| MD5 Checksum: | 02dbbb6ab921bf88e431bbc154fdc01a |
|
| /// File Name: |
phantom_security-1.00.tar.gz |
Description:
|
GNU Phantom.Security is a computer-controlled security system. Using the software and a simple circuit board (schematics included) that you build, you can create a good basic security system that is computer controlled. The system can use off-the-shelf security devices like motion sensors, door magnets, and fire/smoke detectors with little to moderate modification. And if the machine the system is running on is connected to a LAN/WAN or the Internet, you can have it send e-mail. If you have a pager or cell phone capable of receiving e-mail, then you will have around the clock intrusion/fire detection for your home or office.
| | Author: | Joe Thielen | | Homepage: | http://www.joethielen.com/phantom/security/ | | File Size: | 221425 | | Last Modified: | Mar 10 19:46:47 2000 |
| MD5 Checksum: | b540be03dd45ee1f463bfc42490b1079 |
|
| /// File Name: |
ippersonality-20000727-2.4.0-test4...> |
Description:
|
The Linux IP Personality patch fools OS detection by changing some characteristics of the network traffic. Among the things that can be changed are the TCP Initial Sequence Number (ISN), TCP initial window size, TCP options (their types, but also their order in the packet), answers to some pathological TCP packets, and answers to some UDP packets.
| | Author: | Gael Roualland | | Homepage: | http://ippersonality.sourceforge.net | | File Size: | 208892 | | Last Modified: | Jul 27 22:37:34 2000 |
| MD5 Checksum: | 00fe261a0a8609e014e586d7f22b77b0 |
|
| /// File Name: |
StMichael_LKM-0.13-k2.6.tar.gz |
Description:
|
StMichael is a LKM that attempts to provide a level of protection against kernel-module rootkits. StMichael is designed to be loaded early in the system boot process, and is intended to be present and running on its host system prior to the introduction of malicious kernel modules. StMichael provides this protection by monitoring various portions of the kernel, and optionally the entire kernel text itself, for modifications that may indicate the presence of a malicious kernel module. If rootkit-like activity is detected, StMichael will attempt to recover the kernel's integrity by rolling back the changes made to a previously known-good state.
| | Author: | Rodrigo Rubira Branco | | Homepage: | http://www.sourceforge.net/projects/stjude | | Changes: | Special 2.6 release for Defcon. Intended for developers who want to help improve the project but no longer care to work on the 2.4 kernel related release. | | File Size: | 198786 | | Last Modified: | Aug 17 05:03:30 2006 |
| MD5 Checksum: | 44ecd426b3f7a5cb9de7cda5bb696bce |
|
| /// File Name: |
syscalltrack-0.66.6.tar.gz |
Description:
|
Syscall Tracker is a powerful tool for Linux 2.2 and 2.4 which allows you to write rules to track system calls. Currently only logging the invocation is supported, but in the future, you will be able to fail the system call (i.e. force it to return some error code), or suspend the process executing it. Allows you find out info that is hard to find, for instance to determine which process touched a certain file.
| | Homepage: | http://syscalltrack.sourceforge.net | | Changes: | New process parameters PPID and PCOMM, a fix for a bug where filter expressions with '!' or '~' weren't parsed correctly, and a fix for a bug where if the filter expression first token was a '(' it looped endlessly because it never advanced to the next token. | | File Size: | 191492 | | Last Modified: | Jan 7 21:23:07 2002 |
| MD5 Checksum: | 08da34eda3066559dde39f6ae9b58027 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
