Security Software
See also: ExtrusionDetection
Firewalls
- Firewall Builder
- GUI and abstraction tool for building firewall rules for iptables, ipfilter, OpenBSD pf and Cisco PIX.
- NuFW
- An enterprise grade firewall that performs an authentication of every single connection passing through the IP filter, by transparently requesting user’s credentials before any filtering decision is taken. Practically, this means security policies can integrate with the users directory, and bring the notion of user ID down to the IP layers.
Intrusion Detection
- Prelude IDS
- Prelude is an Hybrid IDS framework, that is, it is a product that enable all available security application, be it opensource or proprietary, to report to a centralized system. In order to achieve this task, Prelude relies on the IDMEF (Intrusion Detection Message Exchange Format) IETF standard, that enables different kinds of sensors to generate events using an unified language. Prelude benefits from its ability to find traces of malicious activity from different sensors (Snort, honeyd, Nessus Vulnerability Scanner, Samhain, over 30 types of systems logs, and many others) in order to better verify an attack and in the end to perform automatic correlation between the various events
- Snort
Seems to be the canonical OpenSource implementation.