OSSEC - Host-based Intrusion Detection System
OSSEC is an Open Source Host-based Intrusion Detection System. It performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response.
comments powered by Disqus
Iniciado dia 04/05/2010 o projeto intitulado OSSEC4PFSENSE. O intuito Ã© criar um mÃ³dulo para o PfSense (www.pfsense.org) do OSSEC (www.ossec.net), nele o administrador poderÃ¡ alterar as configuraÃ§Ãµes do OSSEC e verficar os alertas gerados e os active responses desses alertas tudo atravÃ©s de um front-end integrado ao PfSense. Minha expectativa Ã© que caso o projeto seja bem aceito pela comunidade, ele passe a ser "nativo" do novo release do PFSense. Como o front-end estÃ¡ sendo desenvolvido
ClearOS is a powerful network and gateway server designed for small organizations and distributed environments. The open source revolution in the software industry has made it possible to provide ClearOS at no cost. Among other features, antivirus, antispam, VPN and content filtering are built right into the software -- no need for expensive third party add-ons. With ClearOS, you can avoid costly vendor lock-in and proprietary formats; instead, you can embrace open standards and protocols.
OSSEC viewer (using Ext JS)OSSEC supports database logging (OSSEC Wiki). This is an online log viewer. Why?It's a reason to play with the latest version of Ext JS. I've put it here in the hope that someone may find it useful. LimitationsAt present, only supports MySQL (see help wanted). Most importantly, use at your own risk. This project does not implement any authentication or access control. It doesn't force or encourage you to use SSL. It has not been security audited in any way (see help wa
BASE is the Basic Analysis and Security Engine. It is based on the code from the Analysis Console for Intrusion Databases (ACID) project. This application provides a web front-end to query and analyze the alerts coming from a SNORT IDS system.
IronWASP (Iron Web application Advanced Security testing Platform) is an open source system for web application vulnerability testing. It is designed to be customizable to the extent where users can create their own custom security scanners using it. Though an advanced user with Python/Ruby scripting expertise would be able to make full use of the platform, a lot of the tool's features are simple enough to be used by absolute beginners.
Detects file inclusion, sql injection, command execution vulnerabilities of a target Joomla! web site. A regularly-updated signature-based scanner that can detect file inclusion, sql injection, command execution, XSS, DOS, directory traversal vulnerabilities of a target Joomla! web site. It Searches known vulnerabilities of Joomla! and its components, Web application firewall detection and lot more.
OpenEmbedded is the build framework for embedded Linux. It offers a best-in-class cross-compile environment. It allows developers to create a complete Linux Distribution for embedded systems. It support for many hardware architectures. It supports cross-compiles 1000's of packages including GTK+, Qt, the X Windows system, Mono, Java, and about anything else you might ever need.
Endian Firewall Community (EFW) is a "turn-key" linux security distribution that makes your system a full featured security appliance with Unified Threat Management (UTM) functionalities. The software has been designed for the best usability: very easy to install, use and manage and still greatly flexible. The feature suite includes stateful packet inspection firewall, application-level proxies for various protocols (HTTP, FTP, POP3, SMTP) with antivirus support, virus and spam-filtering f
A Nagios check for connected/disconnected OSSEC (www.ossec.net) agents Check us out at http://www.hurricanelabs.com
OpenCVS is a FREE implementation of the Concurrent Versions System, the most popular open source revision control software. It can be used as both client and server for repositories and provides granular access control over data stored in the repository. It aims to be as compatible as possible with other CVS implementations, except when particular features reduce the overall security of the system.