Scapy is a powerful interactive packet manipulation program. It is able to forge or decode packets of a wide number of protocols, send them on the wire, capture them, match requests and replies, and much more. It can easily handle most classical tasks like scanning, tracerouting, probing, unit tests, attacks or network discovery (it can …
Category: Network Security
Permanent link to this article: https://www.darknessgate.com/2015/05/13/scapy/
EtherApe
EtherApe is a graphical network monitor for Unix modeled after etherman. Featuring link layer, IP and TCP modes, it displays network activity graphically. Hosts and links change in size with traffic. Color coded protocols display. It supports Ethernet, FDDI, Token Ring, ISDN, PPP, SLIP and WLAN devices, plus several encapsulation formats. It can filter traffic …
Permanent link to this article: https://www.darknessgate.com/2015/04/21/etherape/
AIDE (Advanced Intrusion Detection Environment)
AIDE (Advanced Intrusion Detection Environment) is a file and directory integrity checker. It creates a database from the regular expression rules that it finds from the config file(s). Once this database is initialized it can be used to verify the integrity of the files. It has several message digest algorithms (see below) that are used …
Permanent link to this article: https://www.darknessgate.com/2015/03/31/aide-advanced-intrusion-detection-environment-2/
OSSEC
OSSEC is an Open Source Host-based Intrusion Detection System that performs log analysis, file integrity checking, policy monitoring, rootkit detection, real-time alerting and active response. It runs on most operating systems, including Linux, MacOS, Solaris, HP-UX, AIX and Windows. Check out OSSEC features and how it works for more information about how OSSEC can help you solve your host-based …
Permanent link to this article: https://www.darknessgate.com/2015/03/07/ossec/
Sguil
Sguil (pronounced sgweel) is built by network security analysts for network security analysts. Sguil’s main component is an intuitive GUI that provides access to realtime events, session data, and raw packet captures. Sguil facilitates the practice of Network Security Monitoring and event driven analysis. The Sguil client is written in tcl/tk and can be run …
Permanent link to this article: https://www.darknessgate.com/2015/03/06/sguil/
Snort 2.9.7.0
Open-Source IDS/IPS Download Snort
Permanent link to this article: https://www.darknessgate.com/2015/03/04/snort-2-9-7-0/
Total Network Monitor
Total Network Monitor is a free network monitoring software for the continuous monitoring of the local network, individual computers, and services that require careful attention and thorough control. TNM will alert you of any problem in advance and generate a detailed report on the circumstances of the failure. How it works Monitor is a special …
Permanent link to this article: https://www.darknessgate.com/2015/02/03/total-network-monitor-2/
Justniffer
Justniffer is a network protocol analyzer that captures network traffic and produces logs in a customized way, can emulate Apache web server log files, track response times and extract all “intercepted” files from the HTTP traffic. It lets you interactively trace tcp traffic from a live network or from a previously saved capture file. Justniffer’s …
Permanent link to this article: https://www.darknessgate.com/2014/11/07/justniffer/
nogotofail
Nogotofail is a network security testing tool designed to help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way. It includes testing for common SSL certificate verification issues, HTTPS and TLS/SSL library bugs, SSL and STARTTLS stripping issues, cleartext issues, …
Permanent link to this article: https://www.darknessgate.com/2014/11/07/nogotofail/
Nagios
Nagios is a powerful monitoring system that enables organizations to identify and resolve IT infrastructure problems before they affect critical business processes. Designed with scalability and flexibility in mind, Nagios gives you the peace of mind that comes from knowing your organization’s business processes won’t be affected by unknown outages. Nagios is a powerful tool …
Permanent link to this article: https://www.darknessgate.com/2014/07/05/nagios/
WirelessNetView
WirelessNetView is a small utility that runs in the background, and monitor the activity of wireless networks around you. For each detected network, it displays the following information: SSID, Last Signal Quality, Average Signal Quality, Detection Counter, Authentication Algorithm, Cipher Algorithm, MAC Address, RSSI, Channel Frequency, Channel Number, and more. System Requirements: Wireless network adapter …
Permanent link to this article: https://www.darknessgate.com/2014/06/10/wirelessnetview/