SettingsLinux security software
ACARM-ng (software)
ACARM-ng (Alert Correlation, Assessment and Reaction Module - next generation) is an open source IDS/IPS system.
ACARM-ng (Alert Correlation, Assessment and Reaction Module - next generation) is an open source IDS/IPS system.
Advanced Intrusion Detection Environment
The Advanced Intrusion Detection Environment was initially developed as a free replacement for Tripwire licensed under the terms of the GNU General Public License.
The Advanced Intrusion Detection Environment was initially developed as a free replacement for Tripwire licensed under the terms of the GNU General Public License.
AppArmor
AppArmor ("Application Armor") is a security module for the Linux kernel, released under the GNU General Public License.
AppArmor ("Application Armor") is a security module for the Linux kernel, released under the GNU General Public License.
arpwatch
arpwatch is a computer software tool for monitoring Address Resolution Protocol traffic on a computer network.
arpwatch is a computer software tool for monitoring Address Resolution Protocol traffic on a computer network.
authbind
authbind is an Open source system utility written by Ian Jackson and is distributed under the GNU General Public License.
authbind is an Open source system utility written by Ian Jackson and is distributed under the GNU General Public License.
backBox
BackBox is an Ubuntu based Linux distribution penetration test and security assessment oriented providing a network and informatic systems analysis toolkit.
BackBox is an Ubuntu based Linux distribution penetration test and security assessment oriented providing a network and informatic systems analysis toolkit.
BitDefender
Bitdefender is an antivirus software suite developed by Romania-based software company Softwin.
Bitdefender is an antivirus software suite developed by Romania-based software company Softwin.
BoKS (software)
In computer security, BoKS is a proprietary product for the centralized management of user authentication and authorization (Role-based access control).
In computer security, BoKS is a proprietary product for the centralized management of user authentication and authorization (Role-based access control).
Crack (software)
Crack is a Unix password cracking program designed to allow system administrators to locate users who may have weak passwords vulnerable to a dictionary attack.
Crack is a Unix password cracking program designed to allow system administrators to locate users who may have weak passwords vulnerable to a dictionary attack.
cryptmount
cryptmount is a software tool for managing encrypted file systems under the GNU/Linux family of operating systems.
cryptmount is a software tool for managing encrypted file systems under the GNU/Linux family of operating systems.
Crypto API (Linux)
Crypto API is a cryptography framework in the Linux kernel, for various parts of the kernel that deal with cryptography, such as IPsec and dm-crypt.
Crypto API is a cryptography framework in the Linux kernel, for various parts of the kernel that deal with cryptography, such as IPsec and dm-crypt.
Damn Vulnerable Linux
Damn Vulnerable Linux (DVL) is a distribution of GNU/Linux geared toward computer security students.
Damn Vulnerable Linux (DVL) is a distribution of GNU/Linux geared toward computer security students.
DansGuardian
DansGuardian, written by SmoothWall Ltd and others, is content-control software: software designed to control which websites users can access.
DansGuardian, written by SmoothWall Ltd and others, is content-control software: software designed to control which websites users can access.
Distributed Access Control System
The Distributed Access Control System is a light-weight single sign-on and role-based access control system for web servers and server-based software.
The Distributed Access Control System is a light-weight single sign-on and role-based access control system for web servers and server-based software.
EnGarde Secure Linux
EnGarde Secure Linux is an open source server-only Linux distribution developed by Guardian Digital.
EnGarde Secure Linux is an open source server-only Linux distribution developed by Guardian Digital.
Exec Shield
Exec Shield is a project started at Red Hat, Inc in late 2002 with the aim of reducing the risk of worm or other automated remote attacks on Linux systems.
Exec Shield is a project started at Red Hat, Inc in late 2002 with the aim of reducing the risk of worm or other automated remote attacks on Linux systems.
Firestarter (firewall)
Firestarter is a free and open source personal firewall tool that uses the Netfilter (iptables/ipchains) system built into the Linux kernel.
Firestarter is a free and open source personal firewall tool that uses the Netfilter (iptables/ipchains) system built into the Linux kernel.
FLASK
The Flux Advanced Security Kernel (FLASK) is an operating system security architecture that provides flexible support for security policies.
The Flux Advanced Security Kernel (FLASK) is an operating system security architecture that provides flexible support for security policies.
FoxT ServerControl (software)
In computer security, FoxT ServerControl is a proprietary product for the centralized management of user authentication and authorization.
In computer security, FoxT ServerControl is a proprietary product for the centralized management of user authentication and authorization.
GNU Privacy Guard
GNU Privacy Guard (GnuPG or GPG) is a GPL Licensed alternative to the PGP suite of cryptographic software.
GNU Privacy Guard (GnuPG or GPG) is a GPL Licensed alternative to the PGP suite of cryptographic software.
grsecurity
grsecurity is a set of patches for the Linux kernel with an emphasis on enhancing security.
grsecurity is a set of patches for the Linux kernel with an emphasis on enhancing security.
ipchains
Linux IP Firewalling Chains, normally called ipchains, is free software to control the packet filter/firewall capabilities in the 2.2 series of Linux kernels.
Linux IP Firewalling Chains, normally called ipchains, is free software to control the packet filter/firewall capabilities in the 2.2 series of Linux kernels.
iptables
iptables is a user space application program that allows a system administrator to configure the tables provided by the Linux kernel firewall (implemented as different Netfilter modules) and the...
iptables is a user space application program that allows a system administrator to configure the tables provided by the Linux kernel firewall (implemented as different Netfilter modules) and the...
Ksplice
Ksplice is an open source extension of the Linux kernel which allows system administrators to apply security patches to a running kernel without having to reboot the operating system.
Ksplice is an open source extension of the Linux kernel which allows system administrators to apply security patches to a running kernel without having to reboot the operating system.
Libipq
libipq is a development library for iptables userspace packet queuing.
libipq is a development library for iptables userspace packet queuing.
Linux Intrusion Detection System
In computer security, the Linux Intrusion Detection System (LIDS) is a patch to the Linux kernel and associated administrative tools that enhances the kernel's security by implementing Mandato...
In computer security, the Linux Intrusion Detection System (LIDS) is a patch to the Linux kernel and associated administrative tools that enhances the kernel's security by implementing Mandato...
Linux Unified Key Setup
In computing, the Linux Unified Key Setup or LUKS is a disk-encryption specification created by Clemens Fruhwirth and originally intended for Linux.
In computing, the Linux Unified Key Setup or LUKS is a disk-encryption specification created by Clemens Fruhwirth and originally intended for Linux.
Linux-VServer
Linux-VServer is a virtual private server implementation that was created by adding operating system-level virtualization capabilities to the Linux kernel.
Linux-VServer is a virtual private server implementation that was created by adding operating system-level virtualization capabilities to the Linux kernel.
LinuxShield
LinuxShield is an anti-virus product from McAfee for enterprise editions of Linux from Red Hat and Novell.
LinuxShield is an anti-virus product from McAfee for enterprise editions of Linux from Red Hat and Novell.
Multi categories security
Multi Categories Security (MCS) is an access control method in Security-Enhanced Linux that uses categories attached to objects (files) and granted to subjects (processes, …) at the operat...
Multi Categories Security (MCS) is an access control method in Security-Enhanced Linux that uses categories attached to objects (files) and granted to subjects (processes, …) at the operat...
Nagios
Nagios is a popular open source computer system monitor, network monitoring and infrastructure monitoring software application.
Nagios is a popular open source computer system monitor, network monitoring and infrastructure monitoring software application.
Nessus (software)
In computer security, Nessus is a proprietary comprehensive vulnerability scanning program.
In computer security, Nessus is a proprietary comprehensive vulnerability scanning program.
NetTop
NetTop is an NSA project to run Multiple Single-Level systems with a Security-Enhanced Linux host running VMware with Windows as a guest operating system.
NetTop is an NSA project to run Multiple Single-Level systems with a Security-Enhanced Linux host running VMware with Windows as a guest operating system.
Network Security Toolkit
The Network Security Toolkit (NST) is a Linux-based Live CD that provides a set of open source computer security and networking tools to perform routine security and networking diagnostic and mo...
The Network Security Toolkit (NST) is a Linux-based Live CD that provides a set of open source computer security and networking tools to perform routine security and networking diagnostic and mo...
nftables
nftables was an engine and administration tool for packet filtering and classification for Linux, intended to replace iptables.
nftables was an engine and administration tool for packet filtering and classification for Linux, intended to replace iptables.
Nmap
Nmap (Network Mapper) is a security scanner originally written by Gordon Lyon (also known by his pseudonym Fyodor Vaskovich) used to discover hosts and services on a computer ne...
Nmap (Network Mapper) is a security scanner originally written by Gordon Lyon (also known by his pseudonym Fyodor Vaskovich) used to discover hosts and services on a computer ne...
ntop
ntop is a network probe that shows network usage in a way similar to what top does for processes.
ntop is a network probe that shows network usage in a way similar to what top does for processes.
Open Source Tripwire
Open Source Tripwire is a free software security and data integrity tool useful for monitoring and alerting on specific file change(s) on a range of systems.
Open Source Tripwire is a free software security and data integrity tool useful for monitoring and alerting on specific file change(s) on a range of systems.
OPIE Authentication System
OPIE is the initialism of "One time Passwords In Everything".
OPIE is the initialism of "One time Passwords In Everything".
OSSIM
OSSIM by AlienVault is an open source Security Information and Event Management, comprising a collection of tools designed to aid network administrators in computer security, intrusion det...
OSSIM by AlienVault is an open source Security Information and Event Management, comprising a collection of tools designed to aid network administrators in computer security, intrusion det...
OssimPlanet
ossimPlanet is an accurate 3D global geo-spatial viewer that is built on top of the OSSIM, OpenSceneGraph, and Qt open source software libraries.
ossimPlanet is an accurate 3D global geo-spatial viewer that is built on top of the OSSIM, OpenSceneGraph, and Qt open source software libraries.
PaX
PaX is a patch for the Linux kernel that implements least privilege protections for memory pages.
PaX is a patch for the Linux kernel that implements least privilege protections for memory pages.
Portmap
The port mapper is an ONC RPC service that runs on network nodes that provide other ONC RPC services.
The port mapper is an ONC RPC service that runs on network nodes that provide other ONC RPC services.
Prelude Hybrid IDS
Prelude is an "agentless", universal, security information management (SIM) system, released under the terms of the GNU General Public License.
Prelude is an "agentless", universal, security information management (SIM) system, released under the terms of the GNU General Public License.
RSBAC
RSBAC (Rule Set Based Access Control) is an open source access control framework for current Linux kernels, which has been in stable production use since January 2000 (version 1.0.9a).
RSBAC (Rule Set Based Access Control) is an open source access control framework for current Linux kernels, which has been in stable production use since January 2000 (version 1.0.9a).
SafeSquid
SafeSquid is content-control software: software designed to control which websites users can access.
SafeSquid is content-control software: software designed to control which websites users can access.
Security-Enhanced Linux
Security-Enhanced Linux (SELinux) is a Linux feature that provides a mechanism for supporting access control security policies, including United States Department of Defense-style mandator...
Security-Enhanced Linux (SELinux) is a Linux feature that provides a mechanism for supporting access control security policies, including United States Department of Defense-style mandator...
Sguil
Sguil is a collection of Free software components for Network Security Monitoring and event driven analysis of IDS alerts.
Sguil is a collection of Free software components for Network Security Monitoring and event driven analysis of IDS alerts.
Simplified Mandatory Access Control Kernel
Smack is a Linux kernel security module that provides a mechanism for protecting data and process interaction from malicious manipulation using a set of custom mandatory access control rules pro...
Smack is a Linux kernel security module that provides a mechanism for protecting data and process interaction from malicious manipulation using a set of custom mandatory access control rules pro...
Snare (software)
Snare (sometimes also written as SNARE, an acronym for System iNtrusion Analysis and Reporting Environment) is a group of open-source agents, and a commercial serve...
Snare (sometimes also written as SNARE, an acronym for System iNtrusion Analysis and Reporting Environment) is a group of open-source agents, and a commercial serve...
Snort (software)
Snort is a free and open source network intrusion prevention system (NIPS) and network intrusion detection system (NIDS), created by Martin Roesch in 1998.
Snort is a free and open source network intrusion prevention system (NIPS) and network intrusion detection system (NIDS), created by Martin Roesch in 1998.
Sum (Unix)
Sum is a core GNU utility written by Kayvan Aghaiepour and David MacKenzie and distributed with the UNIX- and Linux-based operating systems.
Sum is a core GNU utility written by Kayvan Aghaiepour and David MacKenzie and distributed with the UNIX- and Linux-based operating systems.
Symantec Endpoint Protection
Symantec Endpoint Protection, developed by Symantec Corporation, is an antivirus and firewall product leveled at centrally managed corporate environments security for servers and workstations.
Symantec Endpoint Protection, developed by Symantec Corporation, is an antivirus and firewall product leveled at centrally managed corporate environments security for servers and workstations.
Syslog-ng
syslog-ng is an open source implementation of the Syslog protocol for Unix and Unix-like systems.
syslog-ng is an open source implementation of the Syslog protocol for Unix and Unix-like systems.
TCP Gender Changer
TCP Gender Changer refers to a method of making an internal TCP/IP based network server accessible beyond their protective firewall.
TCP Gender Changer refers to a method of making an internal TCP/IP based network server accessible beyond their protective firewall.
TextCrypt
TextCrypt is an encryption software product produced by SubRosaSoft.com Inc. It uses industry standard Rijndael AES-128 encryption to protect user-entered text data.
TextCrypt is an encryption software product produced by SubRosaSoft.com Inc. It uses industry standard Rijndael AES-128 encryption to protect user-entered text data.
Thresh (software)
Thresh is a free application to assist Security Engineers in tuning Snort IDS sensors.
Thresh is a free application to assist Security Engineers in tuning Snort IDS sensors.
X-Wrt
X-Wrt is a set of packages and patches to enhance the Linux-based firmware OpenWrt for residential gateways and wireless routers.
X-Wrt is a set of packages and patches to enhance the Linux-based firmware OpenWrt for residential gateways and wireless routers.
xinetd
In computer networking, xinetd (extended Internet daemon) is an open-source super-server daemon which runs on many Unix-like systems and manages Internet-based connectivity.
In computer networking, xinetd (extended Internet daemon) is an open-source super-server daemon which runs on many Unix-like systems and manages Internet-based connectivity.
Xymon
This network monitoring software has its roots in another piece of network monitoring software called BIG BROTHER SYSTEM AND NETWORK MONITOR.
This network monitoring software has its roots in another piece of network monitoring software called BIG BROTHER SYSTEM AND NETWORK MONITOR.