New System Utilities for Linux

NARC is a free firewalling package for Netfilter/Iptables. It attempts to simplify the setup of a firewall (stateful packet filter) via the iptables tools. NARC is a bash shellscript that generates sensible and secure rules for Netfilter based on a simple...

The Firewall Tester (FTester) is a tool designed for testing firewalls filtering policies and Intrusion Detection System (IDS) capabilities.The tool consists of two perl scripts, a packet injector (ftest) and the listening sniffer (ftestd). The first...

POP3 Virus Scanner Proxy is a full-transparent proxy daemon which scans all mails for viruses using third party scanners (built-in support for AVPD and Trophie).You have to set up a port redirection in the linux-netfilter (iptables) so that all...

Bifrost is a firewall management interface to iptables (iptables GUI). The system is inspired by Checkpoint and Watchguard firewall management. We looked at the way Checkpoint works with source, destination, action and logging. At the same time, we are...

KAVClient is a C language interface to the Kaspersky Anti-Virus daemon. It allows users to scan files and memory for viruses.KAVDaemon is a daemon process that runs in the background and can be asked to check specified files or memory regions for viruses....

ViperDB is a file checker somewhat similar to Tripwire, but based on different assumptions. It only reports if a change is found and therefore can be run every couple of minutes.ViperDB does not use a fancy all-in-one database to keep records instead, I...

imsniff is a pcap-based instant messaging sniffer. It captures the IM traffic in the network and is able to log conversations, contact lists, profile information, incoming email notifications, other MSN events, etc. Tested in Linux and Windows. You can...

gShield is an aggressive, modular, ipchains-based firewall script. gShieldConf is a small program to edit the configuration files for it. It is written using the gtk toolkit. It is released under the GNU GPL.Please note, gShield must be installed prior to...

knockd is a port-knock server. It listens to all traffic on an ethernet (or PPP) interface, looking for special "knock" sequences of port-hits. A client makes these port-hits by sending a TCP (or UDP) packet to a port on the server. This port need not be...

PShutter lets you firewall off ports such as ssh, and selectively enable access with a one-time password. For example, if you want to log into the server from a friend's house, you pull out a list of one-time passwords and point the web browser at a URL...