Links:
ACID Analysis Console for Intrusion Databases: a PHP-based analysis engine to search and process a database of incidents generated by security-related software such as IDSes and firewalls Andrisoft WanGuard Network Security Platform (commercial) Andrisoft WanGuard Network Security Platform is an enterprise-grade network monitoring and protection solution that delivers the functionality NOC, IT, and security teams need to effectively monitor and protect their network through a single, integrated package. BinarySEC BinarySEC is an intelligent Web application firewall. It suppresses 99.9% of malicious traffic on Web sites and applications. Its artificial intelligence engine learns normal traffic and blocks malicious requests with very high accuracy. BinarySEC secures against a wide range of attacks, including cross-site scripting (XSS), SQL injection, command injection, PHP includes, parameter tampering, buffer overflow, directory traversal, attack obfuscation, and more. CGI Port Scanner a CGI script written in Perl with CGI.pm. It scans the TCP ports of a range of IPs or a host by name Codelock uses a unique "key" encryption method to encrypt your pages COMU Privacy Guard a Web based shell for GNU Privacy Guard. It enables users to perform the main functions of GnuPG on the Web Easy Firewall Generator a PHP Web application that generates an iptables firewall script fBuilder (commercial) a Web-based utility for building and configuring your Linux firewall Firewall Admin allows network administrators to manage iptables rules from anywhere though a simple administration interface through a Web browser. Any user can extend it with plug-ins to interact with netfilter modules FreeIPA FreeIPA is an integrated security information management solution combining Linux (Fedora), Fedora Directory Server, MIT Kerberos, NTP, and DNS. It consists of a Web interface and command line administration tools. Currently, it supports identity management with plans to support policy and auditing management. Gherkin Gherkin is a web-enabled, multi-threaded, centralized security scan manager incorporating Nessus vulnerability scanning, dns and nmblookup host resolving, and nmap fingerprinting and scanning. guard bash guard bash is a shell wrapper that will execute an authentication phase before any command is executed. halberd Halberd discovers HTTP load balancers. It is useful for web application security auditing and for load balancer configuration testing. ip-filter-cgi ip-filter-cgi is a set of Perl scripts to modify rules of IP Filter. nessquik nessquik is a fast Web-based Nessus scanner that is intended to replace the Nessus stand alone client. It uses the prototype.js library to provide a responsive interface even when dealing with all of the available Nessus plugins. NessusWC NessusWC provides a simple HTTP Web interface to the Nessus Security Scanner. Nulog Nulog is a firewall log analysis interface written in php. Netfilter is able to log selected packets directly in a database like MySQL or PostgreSQL. Nulog uses this interface to display security events in real-time on a user-friendly interface. p0f p0f is a versatile passive OS fingerprinting and masquerade detection utility, to be used for evidence or information gathering on servers, firewalls, IDSes, and honeypots, or for pen-testing. PHP Screw a PHP script encryption tool. When you are developing a commercial package using PHP, the script can be distributed as encrypted up until just before execution, preserving your intellectual property PHP-NMAP PHP-NMAP is a PHP Web frontend for nmap, a network exploration tool and security/port scanner. phpDistributedPortScanner a completely Web-based distributed TCP portscanner. It uses plain PHP to perform distributed portscans against a single host PHPki an Open Source Web based application for managing a multi-agency "Public Key Infrastructure" for HIPAA compliance. It may be used to create and centrally manage X.509 digital certificates for use with S/MIME enabled e-mail clients PHPkrm PHPkrm is a Web-based GNUPG keyring manager. It allows anonymous visitors to add their own public keys and download all keyrings, and allows synchronization with external servers to refresh the keys and/or upload the keys. Placid a Web-based frontend for Snort that uses MySQL. It was created as a replacement for CMU's ACID PortWatcher PortWatcher will regularly scan switches in a LAN and record into a DB which MAC/IP addresses are assigned to which ports. The result is that network administrators will be automatically informed of any new devices which are attached to their networks. ratproxy ratproxy is a semi-automated, largely passive Web application security audit tool optimized for accurate and sensitive detection, and automatic annotation, of potential problems and security-relevant design patterns based on the observation of existing, user-initiated traffic in complex Web 2.0 environments. Security Management And Risk Tracking Security Management and Risk Tracking (SMART) is a Web-based application to manage an information security program. This is a comprehensive solution that enables a corporation to manage an information security policy, security policy exception handling, security certification and accreditation, third party connection management, asset and vendor management, and issue tracking for security audit, pen testing, SOX, and so on. sensorTrends a GPL web-based application that displays a high-level view of the ports that are being scanned over the course of time. The display is similar to the look and feel of Internet Storm Center sigof SIGOF (Security Information Graphics Oriented Forensic) has been developed as a complement to the ACID or BASE project by implementing useful and detailed graphical presentation of security information/events. This program can exploit any secuity information stored in an ACID/BASE database schema. SIGOF introduces another way to manage security forensics and analysis by providing graphical representation of statistical and security trends. This approach provides the ability to manage a large amount of security events. SourceGuardian (commercial) SourceGuardian provides bytecode encryption to hide the source of PHP applications by removing the original PHP Source Code. Spike PHP Security Audit Tool Spike PHP Security Audit Tool is a tool that performs a static analysis of PHP code for security exploits. Suhosin Suhosin is an advanced protection system for PHP installations. It was designed to protect servers and users from known and unknown flaws in PHP applications and the PHP core. Suhosin comes in two independent parts that can be used separately or in combination. The first part is a small patch against the PHP core that implements a few low-level protections against buffer overflows or format string vulnerabilities. The second part is a powerful PHP extension that implements all the other protections. Suhosin is binary compatible with plain PHP installations. Thresh Thresh is an application for Snort that manages alert thresholding and suppression. It was designed to assist the administrator with tuning one or more Snort sensors. It was designed to run under Red Hat flavors of Linux. It summarizes Snort Alerts by alert count, allows creation and editing of threshold.conf files, prunes your Snort database based on your tunings, and allows you to preview your alert suppressions before deletion. TreeDiskUsage TreeDiskUsage is a Web based disk usage analysis tool. It is divided into two parts, the scanner and the viewer. It can scan multiple PCs and view the results in one place. Turtle Firewall Turtle Firewall is a firewall configuration project based on Linux 2.4.x and iptables. It has a web interface with an intuitive Webmin module. Read more UserTracking UserTracking is a forensics tool which uses an advanced network authentication system in order to be able to answer the question "Who did it?" when Law Enforcement would ask your organization this question. WebCert WebCert is a Web application to generate and manage digital certificates in cases where no "full" CA is needed. It is for those who need a cert quickly and don't have the hang of the OpenSSL command line. WhiteHat Arsenal WhiteHat Arsenal is designed to be the next generation of professional web application security audit software.
