what I thinkwhat I thinkPacketExcalibur_1.0_linux.tgz.....readme
ethereal...Ethereal is a GTK+-based network protocol analyzer, or sniffer, that lets you capture and interactively browse the contents of network frames. The goal of the project is to create a commercial-quality analyzer for Unix and to give Ethereal features that are missing from closed-source sniffers.
Maxty... A small kernel-space tty sniffer. It is a LKM which will attach to read/write syscalls and save incoming/outgoing requests to opened tty devices into separate log files.
Nmap ... utility for port scanning large networks, although it works fine for single hosts. Sometimes you need speed, other times you may need stealth
chkrootkit ...locally checks for signs of a rootkit. Includes detection of LKM rootkits, ifpromisc.c to check and see if the interface is in promisc mode, chklastlog.c to check lastlog for deletions, and chkwtmp.c to check wtmp for deletions
Remote Nmap ...is a python client/server package which allows many authorized clients to connect to a centralized nmap server to do their port scanning. This could be useful for security companies who want to have all their scans come from a dedicated machine. Changes: Now rnmap supports encrypted communications with optional modules. Protocol has changed to support plain/ciphertext communications
Linux Intrusion Detection System... is a patch which enhances the kernel's security. When it's in effect, many system administration operations can be made impossible even for root. You can turn the security protection on or off on the fly and you can hide sensitive processes and prevent anyone from using ptrace or any other capability on your system. LIDS can also provide raw device and I/O access protection. Changes: Now works with kernel 2.2.19! Also includes bugfixes in sysctl, and a new lids.conf format checker in lidsadm
itunnel-1_2_tar.gz.....An ICMP tunnel by edi
mason-0_13_0_92_tar.gz..... Linux based firewall
reverb-0_0_2_tar.gz.....A TCP/IP connection adapter, for port forwarding and more. by team teso
ShokDial4-1.tgz.....excellent war dialer for linux
snort-1_3_tar.gz..... lightweight network intrusion detection system
zodiac-0_2_25_tar.gz.....DNS packet monitor and DNS protocol test and debuging tool
Libnet....a collection of routines to help with the construction and handling of network packets..by route
IP protocols logger....Highly configurable IP protocols logger (ICMP, TCP, UDP). 21k..By Hugo Haas and Etienne Bernard
L0pht-watch tool....advisory txt
This was designed to take the burden off
configuring pppd on Linux by ndb...this is a app..
Samba is a suite of programs to
allow clients access to a server via the SMB
another sniffer....the doc...here
vhost proxy for linux,......bnc
thx 2 al117
nmap.. nmap is a utility for
port scanning large networks and currently runs on Linux.
Socket Script....Socket
Script is a new scripting language to easily make networking oriented
applications
back orifice....Back Orifice Unix
Client with source code
karpski...K-Arp-Ski is a
project that started with the intention of being a simple network
mapper and misuse
detector. It has since turned into a decent sniffer with a Gtk
interface.readme
P0F.... P0f is a small but strangely successful utility I developed long time ago. In short, it recognizes what system others run, but unlike nmap, it does it without generating any traffic. It can also deduct several other interesting facts about the remote system (such as NAT). P0f turned out to be quite popular, is shipped with a bunch of OSes, got integrated with several pieces of serious software, and even makes a part of OpenBSD packet firewall (kudos to Mike Frantzen).
