OpenVPN is a robust and highly configurable VPN (Virtual Private Network) daemon which can be used to securely link two or more private networks using an encrypted tunnel over the internet. Read more hot
Scandetd is a portscan detector (it can also act as a port flood detector or just a connection logger). It is a daemon that waits for incoming tcp connections and tries to recognize TCP and UDP port scans. new
Active port forwarder
Active port forwarder is a software tool for secure port forwarding. It uses SSL to increase security of communication between a server and a client. Originally, it was developed to forward data point to point. However, the need for bypassing firewalls in order to connect to internally located computers influenced the further development of the project.
a UNIX daemon for changing WEP keys of WLAN devices in constant intervals. The WEP keys are calculated by encrypting the current UNIX time using the AES cypher with a given constant key. aeswepd strengthens the security of the weak hardware based, standards compliant WEP technology
a simple daemon and client for sending keepalive messages. The server keeps a list of hostname to IP address, useful for when a remote DHCP client changes IP addresses
authfail is a program that goes with real time updating on FIFO file and adds IP into netfilter with DROP/REJECT policy in real time. The FIFO file is /dev/authfail. The rejected hosts database is located in /var/log/authfail. Each time a given host will do an "authentication failure" via syslog, authfail will count it. If this occure more than the parameters given to authfail, the given host will be REJECTED/DROPPED via Netfilter. Whois notification is possible.
bridged is a user-land alternative to in-kernel ethernet bridge for Linux. Like its kernel counterpart it uses AVL trees to speed up lookups. Currently it only offers basic
CloudVPN is a VPN that allows mesh networking. It can create secured networks with special or weird topologies. All nodes of the network are equal and can connect in any way, so it's very easy to create connection schemes with (for example) clustered servers, decentralized servers, complete topologies for better throughput, ring topologies for failover, long-line for passing through many routes, or tree topology for optimizing inter-server bandwidth needs. It is very easy to get working.
ClusterNFS is a set of patches for the "Universal NFS Daemon" (UNFSD) to allow multiple diskless clients to nfs mount the same root filesystem by providing "interpreted" file names.
Crossroads Load Balancer
Crossroads is a load balance and fail over utility for TCP based services. It is a daemon program running in user space, and features extensive configurability, polling of back ends using 'wakeup calls', detailed status reporting, 'hooks' for special actions when backend calls fail, and much more. Crossroads is service-independent: it is usable for HTTP(S), SSH, SMTP, DNS, etc.
CryptNET Peer Cache Daemon
CryptNET Peer Cache Daemon provides a bootstrapping solution to allow p2p servlets to connect to existing p2p networks. The GWebCache and UHC protocols are implemented. It was designed for the GNU/Linux platform, is written in C, and uses the pthreads library..
Daemon Shield is a daemon that creates realtime dynamic, expirable iptables rules to block/drop IP addresses attempting brute-force breakin attacks on a linux host via ssh or other mechanism. Highly customizable and extensible.
dhcpcd is an implementation of the DHCP client specified in RFC2131.
ethtool is a Linux net driver diagnostic and tuning tool for the Linux 2.4.x (or later) series of kernels.
Fiked is a fake IKE daemon supporting just enough of the standards and Cisco extensions to attack commonly found insecure Cisco PSK+XAUTH VPN setups in what could be described as a semi MitM attack.
FastFwD is a small daemon that allows users to set up port forwarding from a source IP address and port number to a target IP address and port number easily without the need to deal with complicated ipchains/iptables-rules.
fusemb is a small daemon which maps Microsoft network hierarchy into Unix filesystem subtree, using libsmbclient to obtain information about entries in the SMB network and FUSE (Filesystem In UserSpace) to allow seamless network browsing using standard Unix ways.
fwdaemon is a Linux firewall runtime backend. Any client application can communicate with the fwdaemon and decide what network network flow can be accepted or which should be dropped.
This software, consisting of a daemon and a command shell, is meant to be used together with the Xtreme GM7 GPS tracker to help simplify its management and to make it possible to monitor alerts sent by the tracker.
giFT is a bridge between P2P protocols and front-ends. It is implemented as a modular daemon able to load multiple back-end protocols exposed to the user via an XML-like interface protocol.
GPU-SD is a daemon and library for the discovery and announcement of graphics processing units using ZeroConf.
a small daemon that creates virtual hosts on a network. The hosts can be configured to run arbitrary services, and their TCP personality can be adapted so that they appear to be running certain versions of operating systems
HTTPAuth is a daemon and framework for authenticating HTTP requests. It supports Basic and Digest authentication against various databases such as LDAP, PostgreSQL or MYSQL. It also supports NTLM authentication against a Windows Server.
a telnet-like protocol. It allows users to connect to a remote host and to open a shell using only ICMP to send and receive data
using the InterNet Control Message Protocol (ICMP) "ECHO" facility, monitors several hosts, and notify admin if some of them are down
IDSA can be used as a system logger and tcpd (tcp wrapper) replacement, where the tcp wrappers request permission from the core idsa system to accept an incoming connection.
ifplugd automaticallys configure your ethernet device when a cable is plugged in and automatically unconfigure it if the cable is pulled. This is useful on laptops with onboard network adapters, since it will only configure the interface when a cable is really connected.
IM-Filter is a daemon that runs on a firewall and filters ICQ traffic. The daemon can identify file transfers, handle UIN and word blacklists, manage a list with currently logged in users, and log messages sent via the ICQ protocol. The modular design allows implementation of other protocols like MSN or IRC.
IMAPEngine is an IMAP email server that stores all email and mailbox data within a tdbengine database structure. Thus it provides high performance even with a huge number of email accounts, messages and folders.
inetdxtra is a collection of inetd servers aimed at low-powered hardware like the Linksys NSLU2. It comprises a lightweight DNS, DHCP, MVPrelay, SMTP, WWW, and XMPP/Jabber server.
listens for traffic on the specified interfaces. It has the built-in RSH and NetFlow engines to allow exporting the accounting data the same way as Cisco routers do
a set of internet protocol service daemons for Unix. It currently includes a TCP/IP service daemon, and a UDP/IP service daemon
The Internet Registry Routing Daemon: a streamlined, stand-alone Internet Routing Registry database server that supports RIPE-181, RPSL, and RPSLng routing registry syntaxes. The IRRd package includes additional utilities, tools, and services to securely manage and maintain the database
JubJub is a daemon for server side logging of XMPP packets. JubJub is based upon a module architecture, so it is possible to flexibly reassign handlers for different types of XMPP packets. Originally, JubJub was designed for ejabberd server. JubJub is named after a collateral character of the famous poem by Lewis Carroll.
kimono is a network service monitor similar to sysmon. it aims to monitor services to such an extend that the administrator can be certain of its function, and in case of failure alert in a number of ways. it stores all data (by default) in an SQL database. The data is collected through a daemon.
a much-improved Linux NFS server with support for NFSv3 as well as NFSv2
knockd is a port-knock server. It listens to all traffic on an ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client makes these port-hits by sending a TCP (or UDP) packet to a port on the server.
Kojoney is a low level interaction honeypot that emulates an SSH server. The daemon is written in Python using the Twisted Conch libraries.
Ktell is a user level daemon that monitors expiration time of Kerberos ticket granting tickets. It will send a warning to the user's least idle tty when a certain time is reached before the ticket will expire.
a daemon that extends IPFilter's simple round-robin L4 load balancing with health checks. It takes care of monitoring and dynamically adding and removing ipnat rules in the kernel
linetd is a small inetd or xinetd replacement. It does not use a configuration file and can be run from the commandline by a nonroot user.
a daemon (service) designed to take over the job of properly closing network connections from an http server like Apache
a log filtering "daemon" written in Perl
Looper Event / Alert System
a free open-sourced *NIX application designed to greatly simplify the event / alert model
LSM-PKCS11 is a package intended to support the implementation of Lite Security Modules, i.e. a kind of not certified Software or Hardware Security Modules (HSM, SSM). The targets of such implementations are PKIs (Public Keys Infrastructures) for intra-company and network applications, requiring a non-trivial security level but not so 'budgeted' to allow the acquisition of true (certified) HSMs, whose cost starts from as little as some thousands dollars.
Lsyncd (Live Syncing (Mirror) Daemon) uses rsync to synchronize local directories with a remote machine running rsyncd. It watches multiple directory trees through inotify. The first step after adding the watches is to rsync all directories with the remote host, and then the software synchronizes single files by collecting the inotify events. lsyncd is a lightweight live mirror solution that should be easy to install and use while blending well with your system.
a cluster monitoring daemon written originally with the intention of replacing tools like ldirectord and mon with regards to maintaining LVS tables
Linux Container Daemon (LXD) is a new hypervisor that delivers capabilities to LXC containers that cloud users demand in scale out infrastructure.
mbsyslog is a soup-to-nuts implementation of syslogd. Runs as separate modules which enhance security and allow sys admins to introduce stdin-stdout filters between modules. Distributed under the GPL.
Mini SNMP Daemon
Mini SNMP Daemon is a minimal implementation of an SNMP daemon. It is targeted for usage in embedded systems with limited disk and memory resources. All configuration is done using commandline arguments. It supports basic CPU, memory, disk, and network interface statistics.
MiniUPnP Client and Daemon
The MiniUPnP project is a library and a daemon. The library is aimed to enable applications to use the capabilities of a UPnP Internet Gateway Device present on the network to forward ports. The daemon adds the UPnP Internet Gateway Device functionality to a NAT gateway running OpenBSD through PF.
Miredo is a Unix daemon program which implements the Teredo: Tunneling IPv6 over UDP through NATs Internet draft specification.
Multiplexing Console Manager
Multiplexing Console Manager is a daemon that provides multiplexed access to network accessible consoles (e.g. terminal servers, Serial Over LAN, etc).
mxallowd is a daemon for Linux Netfilter (using libipq) which implements a slightly improved nolisting mechanism. It requires your name server to be configured to return two MX IP addresses, and the one with higher priority must not run a mail server on port 25. mxallowd blocks attempts to connect to the mail server unless the sender tries to connect to the first mail server before the second. Since most spammers will attempt direct connections to each mail server, they will be blocked.
Nagserv is a daemon with 2 functionalities. It can act as an RSS feeder that provides the Nagios status as an RSS feed (e.g. which services are down, etc.). It can also be a bridge between the new Nagios 2.0 status.log format and tools that expect the older Nagios 1.2 format.
NAmpel is a daemon for visualizing the state of a network, using Nagios.
netacct-mysql is a modified version of traffic accounting daemon net-acct which stores collected data in MySQL.
manages network interfaces in response to network cables being plugged in and out
NetTraf consists of a daemon running on Linux, and a client application that monitors one interface on the Linux machine. It is mainly used to show the status of a dial-up connection of a Linux masquerade server, so everyone on the network knows if the connection is active and how well the connection is performing.
NIELD (Network Interface Events Logging Daemon) is a tool that receives notifications from the kernel through the netlink socket, and generates logs related to link state, neighbor cache(ARP,NDP), IP address(IPv4,IPv6), route, FIB rules.
nionet is a complete VPN server/client solution that bridges an Ethernet segment over whatever transport network you chose. Thus it is possible to have no difference wether the road warrior is in the office or outside - everything works the same way: DHCP, TCP/IP, ARP, Routing, etc.
nisldapd is a software daemon written in C for *nix systems that, given a properly configured ypserv, slapd and syslog environment, can provide user and group information via NIS/YP which is published in an LDAP datastore.
Octod is a "download manager daemon", i.e. a daemon that listens at the network interface for incoming download jobs and performs them (simultaneously) in the background. It is intended to run on desktop systems as a reliable and fast download manager without the overhead of a graphical user interface, but it can also be used as a centralized download station running in network environments with multiple users.
Oculus Server Monitor
Oculus Server Monitor uses a plaintext protocol to export server information to any client that connects to it. It supports a plugin system for commands, an XML-style configuration file, and IP-based access control.
Open Lock Daemon: simple lock server which provides central point where to lock resources in a distributed environment by using TCP/IP to communicate with its clients
a free implementation of the Network Time Protocol. It provides the ability to sync the local clock to remote NTP servers and can act as NTP server itself, redistributing the local clock
an effort to develop an open-source implementation of Service Location Protocol suitable for commercial and non-commercial application
P4Spam is a Perforce change review daemon which spits out sexy HTML-styled notification emails.
a small helper to make your pf tables reachable from other hosts. You can add/delete/flush IP addresses to/from a fixed table with a single UDP datagram. A simple client program is included to do this from the command line
Policyd is an anti-spam plugin for Postfix (written in C) that does greylisting, sender (envelope or SASL) based throttling (on messages and/or volume per defined time unit) and Spamtrap monitoring / blacklisting.
Portkey is an implementation of a port-knocking daemon. It's simple, reliable and requires no special clients - telnet is fine. It supports knocks on any valid TCP port in the range 1-65535 and supports key sequences of arbitrary lengths.
PPP Gatekeeper is a daemon which manages PPPOE connections supporting various levels of redundancy and failover.
ptcap is a Unix daemon that captures traffic packet size, source, destination, and times and saves this data into a native Postgres or ODBC database in near real time, from which traffic reports may be made. It does not save the actual data or headers. It works on ethX or cooked devices like ppp0. It uses Postgres embedded SQL to insert the data, pcap to capture traffic, and pthreads to capure and write at the same time. Pcap filters can be specified on the command line. Logs go to syslog.
Portable Transport Relay Translator Daemon: a method of allowing IPv6 hosts to communicate with IPv4 hosts. It is a TRT as specified by RFC 3142, similar to the Faith package implemented by the KAME project
PyGopherD is a modern Gopher server. It can serve documents with Gopher+, standard Gopher (RFC1436), and HTTP -- all on the same port. Pygopherd features a modular extension system as well as loadable scripts and much more.
qpimd aims to implement a PIM (Protocol Independent Multicast) daemon for the Quagga Routing Suite.
Linux IPv6 Router Advertisement Daemon: sends Router Advertisement messages, specified by RFC 2461, to a local Ethernet LAN periodically and when requested by a node sending a Router Solicitation message
Rsyncmanager is a daemon designed to simplify the task of coordinating multiple file transfers to or from a machine. It was originally written to serve as the managing hub of a backup system that used rsync to feed in files from many other machines, so that all backups could be run from a single place.
a TCP port scan detection tool, originally designed to illustrate various attacks an IDS developer has to deal with
sec-wall is a security proxy for everything related to securing HTTP/HTTPS traffic. Designed as a pragmatic solution to the question of securing servers using SSL/TLS certificates, WS-Security, HTTP Basic/Digest Auth, custom HTTP headers, XPath expressions with an option of modifying HTTP headers and URLs on the fly.
sesoma allows you to build a virtual user infrastructure using sendmail and PostgreSQL/MySQL without patching.
sessiond allows a cluster of SSL/TLS servers to share their session caches in order to prevent each node of the cluster from negotiating a separate session.
shaperd is a user-space traffic shaper.
a C# deamon that implements the UPnP Internet Gateway Device specification (IGD) and allows UPnP aware clients, such as MSN Messenger or DirectPlay based applications to work properly from private networks
The SIP forwarding daemon (implemented as a stateless SIP proxy) allows you to seamlessly forward SIP requests to other SIP servers
Snort2Pf greps Snort's alertfile and blocks the "naughty" hosts for a given amount of time using pfctl.
Simple Network Time Sync allows multiple groupings of servers and clients on a network for independent time management for labs.
This is a C++ implementation of a socks4 server. It supports both CONNECT and BIND operations.
Spyrius is an extensible multithreaded superdaemon. It is essentially a TCP server that manages loadable modules ("plug-ins"). Each module represents a network service that can be loaded into or unloaded from the daemon on-the-fly. Worker threads are spawned to handle incoming client connections. A client can communicate with several modules in the course of one session with the daemon. The daemon itself can be administered over a TCP connection.
provides the standard Internet whois directory service
System Local Audit Daemon
SLAD is a tool for performing local security checks against GNU/Linux systems. The Version 2.0 provides a XML Interface for Parameters and easy integration of additional audit-parameters and tools. To help the administrator to integrate a new feature-set, a development-documentation is provided with the cvs.
captures traffic packet size, source, destination and times and saves this data into a postgres database in real time, from which traffic reports may be made. Works on cooked devices like ppp0 Uses - embedded sql to insert the data - pcap to capture traffic - pthreads to capure and write at the same time
tgw is a tcp gateway which allows you to connect two machine which cannot normally communicate via an intermediate node.
tinc is a Virtual Private Network (VPN) daemon that uses tunneling and encryption to create a secure private network between hosts on the Internet.
an IPX protocol tunneling daemon, running IPX over TCP/IP between many hosts and unpacking them on the other side. This is especially useful for people with masqueraded hosts who want to communicate IPX traffic to others with masqueraded hosts.
a userspace network accounting daemon which collects headers of IP packets that travel through the Linux 2.4+ Netfilter. It logs aggregated accounting records that consist of source/dest, ports, byte/packet counter, interfaces, protocol
UniK OLSR daemon
an implementation of the Optimized Link State Routing protocol for GNU/Linux systems
USB Network Daemon
The USB Network Daemon is an application that makes a USB interface available over the network as transparently as possible. Because the data structures that are accepted by the daemon are similar to the direct USB calls of a well-known USB driver vendor, the (additional) implementation of the network interface can be done easily.
vpnd connects two networks on network level either via TCP/IP or a (virtual) leased line attached to a serial interface.
a roaming daemon for wireless IEEE 802.11 NICs supporting the Linux wireless extensions. It is intended to configure the WEP keys according to the networks found
a WCCP (Web Cache Coordination Protocol) server daemon. It allows a router to redirect web traffic to a group of Squid servers using WCCP as the monitoring/controling protocol
WiFi Statistics Daemon
WiFi Statistics Daemon is a script which generates a PNG graphing signal/noise/link levels on a selected wireless interface.
xl2tpd a Layer 2 Tunneling Protocol (L2TP) daemon. It supports IPsec SA reference tracking, which enables the IPsec stacks to support multiple l2tp clients behind the same NAT router and multiple l2tp clients on the same internal IP address. It is a fork of "l2tpd".
xllmnrd is an IPv6 LLMNR responder daemon. It allows Microsoft Windows clients to get the IPv6 address of a Linux server on the same local network without any DNS configuration.
XORP is the eXtensible Open Router Platform, an open- source router software stack. The goal is to develop a software router platform that is stable and fully featured enough for production use, and flexible and extensible enough to enable network research. It implements routing protocols for IPv4 and IPv6 and a unified means to configure them.
XVPND is a tunneling daemon designed to make non-IP-based communication possible through IPSEC VPNs. Currently supported protocols are IP broadcast, ARP, DHCP/BOOTP, and IPX. Other protocols could be supported via additional plugins.
Xyria:CDPNNTPd is a minimalistic, easy to configure NNTP server for Unix. The server is part of the Xyria-Networkservices project and is IPv6 ready.
ypbind-mt is a multi-threaded implementation of a NIS binding daemon. ypbind-mt compiles and works on Linux with glibx 2.x (libc6). It should work on every System with POSIX threads and glibc 2.x.
an attempt to create a daemon that bridges NIS clients to an LDAP server
Zebra manages TCP/IP based routing protocols. It supports BGP-4 protocol as described in RFC1771 (A Border Gateway Protocol 4) and RIPv1, RIPv2 and OSPFv2.
a music playing daemon. It accepts remote commands via its own mini HTTP server and can use seamlessly Audio or Data CDs