codesloop is a collection of tools and helpers for creating distributed applications.
6jack is a framework for testing, analyzing, and fuzzing network applications. 6jack runs a command, intercepts calls to common network-related system calls, and passes them through an external filter.
Addjob lets you distribute jobs over a network. You just run "addjob-server", and then submit jobs like "addjob gcc -c foo.c". You can still interact with your program via the command line, and exit-codes are preserved, so it integrates well with Makefiles.
aggregate is a tool for aggregating CIDR networks. Input is read from stdin and output is written to stdout. It undestands IPv4 networks represented as network/prefix, network/netmask and start_address - end_addres. It is able to read input in any one of these formats and output in the same or a different format.
Ahcpd is an implementation of the Ad-Hoc Configuration Protocol (AHCP), an IPv6 stateless configuration protocol for cases where standard auto-configuration and DHCPv6 don't work, such as mesh networks.
Amrita VPN is an easy-to-use open source VPN solution that runs on the GNU/Linux platform. The implementation is fully in userspace and requires no kernel patches or enhancements. It uses openssl library for strong encryption and authentication through SSLv3.
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.
asuc is a small Qt program written to display incoming UDP packages and send out keystrokes
Authentic is a Liberty-enabled identity provider aiming to address a broad range of needs, from simple to complex setups. Its Liberty compliance relies on Lasso, a free software implementation of the Liberty Alliance specifications. It is a quixote application and is commonly run inside the Apache Web server.
authz-tools is a set of tools to manipulate authz files (as used by mod_authz_svn).
The Barefoot server is a scalable user-space port bouncer that can be used to forward, or bounce, TCP connections and UDP packets destined for an address on the host the Barefoot server runs on, to any other host or address.
BindConfig is a tool to reduce the error prone work of maintaining BIND's zone files.
BitDew is a programmable environment for the management and distribution of data for grid, desktop grid, and cloud systems. It can easily be integrated into large scale computational systems such as XtremWeb, BOINC, Hadoop, Condor, Glite, Unicore, OpenStack, and Eucalyptus.
BongoSurfer is a least-cost router for Linux, like the Smartsurfer program for Windows. It allows you to connect to the Internet with a 56k modem or ISDN, and chooses the cheapest provider for you.
Brcontrol is a set of patches to allow some interaction between a IDS and a firewall (currently snort and linux netfilter) It can help in the creation of aggresive honeypots or other advanced firewall and ids configurations. In can also work as a bridge.
Campagnol is a distributed IP-based VPN software able to open new connections through NATs or firewalls without any configuration. It uses UDP for the transport layer and utilizes tunneling and encryption (with DTLS) and the UDP hole punching NAT traversal technique.
catnip is a tiny non-libpcap based network packet capturing tool. It is particularly suitable for embedded environments where a libpcap based tool, typically 100kiB for just libpcap and 500kiB for tcpdump, would be simply too large.
CCNx is a networking system which replaces named hosts with named content as the primary abstraction.
cdpr shows the switch and port that a machine is connected to, provided that the device supports CDP. It can also optionally decode the full CDP packet.
The Coraid Ethernet Console client, cec, can connect to any CEC server over raw ethernet.
The CentralNic Toolkit is CentralNic's system for instantaneous Registry-Registrar Communications. Registrars can use this system to register and modify domain names in real time, with no delays for human intervention or e-mail processing. The toolkit also provides advanced and efficient methods for searching for and querying domain names and whois records, and retrieving account information.
cflowd is a flow analysis tool currently used for analyzing Cisco's NetFlow enabled switching method. The current release includes the collections, storage, and basic analysis modules for cflowd and for arts++ libraries. This analysis package permits data collection and analysis by ISPs and network engineers in support of capacity planning, trends analysis, and characterization of workloads in a network service provider environment.
chaostables is a package with iptables/netfilter targets that will foil network scanners. Documentation on how it works and how to reimplement it in userspace are also provided.
classh is yet another wrapper around ssh for running commands on a number of hosts concurrently. It is similar to xCAT, pssh, Cluster ssh, and a gaggle of other utilities.
Cloud User Shell
Cloud User Shell (cush) is a multi-call executable bringing RESTful cloud control to the command line, combining many useful cloud computing utilities into a single executable.
CloudStack is a complete package for managing cloud computing and virtual infrastructure. It enables users to easily build, manage, and deploy private and public clouds.
Collink is a link extractor/collector based on Qt library. It saves list of links as plain text or better as a Downloader for X list providing different names for files to save.
Community-ID is an OpenID implementation which is OpenID 2.0 compliant. Users can keep track of their trusted sites and manage them.
comserv allows you to talk to a network terminal server such as a Xyplex MAXserver 1600. The handy thing about this program is that the client side of the connection does not need to know anything about how to talk to the terminal server. COMSERV handles the connection details.
Conserver is an application that allows multiple users to watch a serial console at the same time. It can log the data, allows users to take write-access of a console (one at a time), and has a variety of bells and whistles to accentuate that basic functionality. The idea is that conserver will log all your serial traffic so you can go back and review why something crashed, look at changes (if done on the console), or tie the console logs into a monitoring system (just watch the logfiles it creates).
Covert_qos uses the Quality of service fields in IPv4 and IPv6 to set up a unidirectional covert channel.
czxNetSwitch is a profile based network manager. It allows users to create different profiles for their network configuration and easily switch between them.
dbxbandmin collects traffic via ipchains/iptables/ipfwadm-rules and writes the data into an Interbase database.
Dedalo allows the automatic drawing of the topology of a Cisco network utilizing CDP and SNMP.
diald-top maintains a top-like listing of all packets and their time to live for use with diald. It uses named pipes for communication.
dispy is a Python framework for parallel execution of computations by distributing them across multiple processors in a single machine (SMP), or among many machines in a cluster or grid.
Domain Hunter is a simple application to monitor the state of a list of domain names. Changes in the status of a monitored domain can be sent to an email address or the domain information can be obtained on demand through a Web interface. Only the .com and .net top-level domains are currently supported.
DOmain Tracking Made Easy
DOmain Tracking Made Easy is a domain tracker. It's written in C and has a web interface in PHP and a MySQL DB backend. Its purpose is to make domain management easier.
dotXyGTK automatically downloads a selected class of pics from the net. dotXyGTK uses plug-ins to traverse various sites in search for pictures and Internet protocols.
DrKnock is a Dynamic Port Knocking solution based on sig2knock.
dumbado is a program that captures packets transmitted over the network, (AKA a packet sniffer) and stores statistics based on them for analysis or debugging
e-U Connect is a WPA Supplicant text mode user interface based on bash+dialog for connecting to the e-U network (www.e-u.pt) under Linux.
eldap is simple auxprop module for SASL that provides SASL authentication for services that do not allow the PLAIN mechanism (like subversion) and for people that don't think it a good idea to have plain text passwords in LDAP.
Enca is an Extremely Naive Charset Analyser. It detects character set and encoding of text files and can also convert them to other encodings. The charset detecing functionality is also available as a library.
Engine_pkcs11 is an implementation of an engine for OpenSSL. It can be loaded using code, config file, or command line and will pass any function call by openssl to a PKCS#11 module.
Feedbackd is an add-on to the Linux Virtual Server project (LVS) to provide dynamic feedback of server health.
flapjack is a command line utility to control the Belkin USB KVM switch with audio. It can flip just video, just audio, or both.
flowd is a small, fast, secure, and featureful NetFlow collector. It supports NetFlow versions 1, 5, 7, and 9 over IPv4 and IPv6 transports, IPv6 flows (using NetFlow 9), filtering and tagging of received flows using a packet filter-like language, Perl and Python APIs, flexible storage (with run-time selection of which NetFlow fields are stored), reception of multicast flow datagrams, and privilege separation for security. The flowd distribution also includes a set of supplemental tools including analysis and SQL database support.
freeDiameter is a framework in C for supporting the Diameter Base Protocol (RFC3588). Diameter is a protocol for authentication, authorization, and accounting; it is the successor of RADIUS.
furl is a small utility designed to display the HTTP headers returned by web-servers in response to client requests.