Alpine security: Difference between revisions
m (→Misc tools) |
WhyNotHugo (talk | contribs) (Add "Category:Security") |
||
(161 intermediate revisions by 8 users not shown) | |||
Line 1: | Line 1: | ||
Alpine Security | {{obsolete|See notice on [[Alpine Security and Rescue]]}} | ||
== Basics == | == Basics == | ||
Line 11: | Line 11: | ||
| alpine-base | | alpine-base | ||
| Alpine base package | | Alpine base package | ||
| | | https://pkgs.alpinelinux.org/packages?name=alpine-base | ||
|- | |- | ||
| bkeymaps | | alpine-mirrors | ||
| List of Official Alpine Linux Mirrors | |||
| https://mirrors.alpinelinux.org/ | |||
|- | |||
| kbd-bkeymaps | |||
| Binary keymaps for busybox | | Binary keymaps for busybox | ||
| | | https://pkgs.alpinelinux.org/packages?name=kbd-bkeymaps | ||
|- | |||
| network-extras | |||
| Meta package to pull in vlan, bonding, bridge and wifi support | |||
| https://pkgs.alpinelinux.org/packages?name=network-extras | |||
|- | |||
| {{pkg|openssl}} | |||
| Toolkit for TLS | |||
| https://www.openssl.org/ | |||
|- | |||
| {{pkg|tzdata}} | |||
| Timezone data | |||
| https://www.iana.org/time-zones | |||
|} | |} | ||
Line 26: | Line 42: | ||
! URL | ! URL | ||
|- | |- | ||
| | | {{pkg|py3-pylint}} | ||
| | | Analyzes Python code looking for bugs and signs of poor quality | ||
| | | https://pypi.org/project/pylint/ | ||
|- | |- | ||
| | | {{pkg|flawfinder}} | ||
| | | Examines C/C++ source code for security flaws | ||
| | | https://www.dwheeler.com/flawfinder/ | ||
|- | |- | ||
| | | {{pkg|py3-pyflakes}} | ||
| | | A passive checker of Python programs | ||
| | | https://launchpad.net/pyflakes | ||
|- | |- | ||
| | | {{pkg|strace}} | ||
| | | A useful diagnositic, instructional, and debugging tool | ||
| | | https://strace.io/ | ||
|- | |- | ||
| | | {{pkg|valgrind}} | ||
| A tool | | A tool for finding memory-management problems | ||
| https:// | | https://valgrind.org/ | ||
|} | |} | ||
== Forensics / Data recovery tools == | == Forensics / Data recovery tools == | ||
Line 57: | Line 71: | ||
! URL | ! URL | ||
|- | |- | ||
| | | {{pkg|ddrescue}} | ||
| | | Data recovery tool for block devices with errors | ||
| | | https://www.gnu.org/s/ddrescue/ddrescue.html | ||
|- | |- | ||
| testdisk | | {{pkg|testdisk}} | ||
| A powerful free data recovery software | | A powerful free data recovery software | ||
| | | https://www.cgsecurity.org/wiki/TestDisk | ||
|- | |- | ||
| scrub | | {{pkg|scrub}} | ||
| Disk scrubbing program | | Disk scrubbing program | ||
| | | https://code.google.com/archive/p/diskscrub/ | ||
|- | |- | ||
| ncdu | | {{pkg|ncdu}} | ||
| A curses-based version of the well-known "du" | | A curses-based version of the well-known "du" | ||
| | | https://dev.yorhel.nl/ncdu | ||
|- | |- | ||
| htop | | {{pkg|htop}} | ||
| An interactive process viewer for Linux | | An interactive process viewer for Linux | ||
| | | https://htop.dev/ | ||
|- | |||
| {{pkg|wipe}} | |||
| Tool for securely erasing files from magnetic media | |||
| https://wipe.sourceforge.net/ | |||
|- | |- | ||
| | | {{pkg|jhead}} | ||
| | | An Exif jpeg header manipulation tool | ||
| | | https://www.sentex.net/~mwandel/jhead/ | ||
|} | |} | ||
<!-- ToDo | |||
|- | |||
| aimage | |||
| Advanced Disk Imager (part of krita now???) | |||
| https://www.afflib.org | |||
|- | |||
| fiwalk (part of sleuthkit now???) | |||
| Batch analysis of a disk image | |||
| https://www.afflib.org | |||
* ntfs-3g - Linux NTFS userspace driver | * ntfs-3g - Linux NTFS userspace driver | ||
* sleuthkit - The Sleuth Kit (TSK) | * sleuthkit - The Sleuth Kit (TSK) | ||
chntpw | |||
Hydra | |||
volatility3 An advanced memory forensics framework https://github.com/volatilityfoundation/volatility3 | |||
pdfcrack A Password Recovery Tool for PDF files https://pdfcrack.sourceforge.net/ | |||
--> | |||
== Reconnaissance == | == Reconnaissance == | ||
Line 106: | Line 127: | ||
! URL | ! URL | ||
|- | |- | ||
| arpon | | {{pkg|arpon}} | ||
| ARP handler inspection | | ARP handler inspection | ||
| | | https://arpon.sourceforge.io/ | ||
|- | |- | ||
| dnsenum | | {{pkg|dnsenum}} | ||
| A tool to enumerate DNS info about domains | | A tool to enumerate DNS info about domains | ||
| | | https://github.com/fwaeytens/dnsenum | ||
|- | |- | ||
| scanssh | | {{pkg|scanssh}} | ||
| Fast SSH server and open proxy scanner | | Fast SSH server and open proxy scanner | ||
| | | https://monkey.org/~provos/scanssh/ | ||
|- | |- | ||
| ngrep | | {{pkg|ngrep}} | ||
| Network layer grep tool | | Network layer grep tool | ||
| | | https://github.com/jpr5/ngrep/ | ||
|- | |- | ||
| | | {{pkg|scapy}} | ||
| scapy | |||
| Interactive packet manipulation tool and network scanner | | Interactive packet manipulation tool and network scanner | ||
| | | https://scapy.net/ | ||
|- | |- | ||
| socat | | {{pkg|socat}} | ||
| Bidirectional data relay between two data channels ('netcat++') | | Bidirectional data relay between two data channels ('netcat++') | ||
| http://www.dest-unreach.org/socat/ | | <p>http://www.dest-unreach.org/socat/{{insecure url|Self-signed certificate on HTTPS}}</p> | ||
|- | |- | ||
| tcpdump | | {{pkg|tcpdump}} | ||
| A network traffic monitoring tool | | A network traffic monitoring tool | ||
| http://www. | | https://www.tcpdump.org/ | ||
|- | |||
| {{pkg|tcpflow}} | |||
| A tool for monitoring, capturing and storing TCP connections flows | |||
| https://github.com/simsong/tcpflow | |||
|- | |||
| {{pkg|nmap}} | |||
| A network exploration tool and security/port scanner | |||
| https://nmap.org | |||
|- | |||
| {{pkg|arpwatch}} | |||
| An ethernet monitoring program | |||
| https://ee.lbl.gov/ | |||
|- | |||
| {{pkg|p0f}} | |||
| Passive traffic fingerprinting tool | |||
| https://lcamtuf.coredump.cx/p0f3/ | |||
|- | |||
| {{pkg|hping3}} | |||
| A ping-like TCP/IP packet assembler/analyzer | |||
| <p><s><nowiki>http://www.hping.org/</nowiki></s> <small>(Website down, alternates are: http://wiki.hping.org/{{insecure url|HTTPS connection refused}} and https://github.com/antirez/hping )</small></p> | |||
|- | |||
| {{pkg|sslscan}} | |||
| fast SSL/TLS configuration scanner | |||
| https://github.com/rbsec/sslscan | |||
|- | |- | ||
| | | {{pkg|httpry}} | ||
| | | A packet sniffer designed for HTTP traffic | ||
| | | https://dumpsterventures.com/jason/httpry | ||
|- | |- | ||
| | | {{pkg|bannergrab}} | ||
| A tool | | A banner grabbing tool | ||
| http:// | | https://sourceforge.net/projects/bannergrab | ||
|- | |||
| {{pkg|dnstop}} | |||
| A DNS traffic capture utility | |||
| <p>http://dns.measurement-factory.com/tools/dnstop/{{insecure url|Invalid certificate on HTTPS}}</p> | |||
|- | |- | ||
| | | {{pkg|swaks}} | ||
| | | A transaction-oriented SMTP test tool | ||
| | | https://www.jetmore.org/john/code/swaks/ | ||
|- | |- | ||
| | | {{pkg|mitmproxy}} | ||
| An | | An interactive SSL-capable intercepting HTTP proxy | ||
| | | https://www.mitmproxy.org/ | ||
|- | |- | ||
| | | {{pkg|hexinject}} | ||
| A | | A very versatile packet injector and sniffer | ||
| | | https://hexinject.sourceforge.net/ | ||
|- | |- | ||
| | | {{pkg|openvas-scanner}} | ||
| | | Vulnerability scanner and manager | ||
| | | https://www.openvas.org/ | ||
|} | |} | ||
<!-- ToDo | |||
* | dpkt | ||
python packet creation / parsing library | |||
https://code.google.com/p/dpkt/ | |||
* nuttcp https://www.nuttcp.net | |||
* tcpdump -- A network traffic monitoring tool | * tcpdump -- A network traffic monitoring tool | ||
* tcpflow -- Network traffic recorder | * tcpflow -- Network traffic recorder | ||
* tcpreplay -- Replay captured network traffic | * tcpreplay -- Replay captured network traffic | ||
* tcptraceroute -- A traceroute implementation using TCP packets | * tcptraceroute -- A traceroute implementation using TCP packets | ||
* ettercap https://ettercap.sourceforge.net/ A network traffic sniffer/analyser | |||
--> | |||
==Application Testing== | |||
* ettercap | |||
{| cellpadding="5" border="1" class="wikitable" | {| cellpadding="5" border="1" class="wikitable" | ||
|- | |- | ||
! Name | ! Name | ||
! Description | ! Description | ||
! URL | ! URL | ||
|- | |- | ||
| | | {{pkg|lynis}} | ||
| | | Security and system auditing tool | ||
| | | https://cisofy.com/lynis/ | ||
| | |- | ||
| {{pkg|nikto}} | |||
| A web application security scanner | |||
| https://www.cirt.net/Nikto2 | |||
|- | |||
| {{pkg|sqlmap}} | |||
| Automatic SQL injection and database takeover tool | |||
| https://sqlmap.org/ | |||
|- | |- | ||
| | | {{pkg|zaproxy}} | ||
| | | OWASP Zed Attack Proxy web app scanner | ||
| | | https://www.zaproxy.org/ | ||
| | |||
|} | |} | ||
== Network statistics == | |||
{| cellpadding="5" border="1" class="wikitable" | {| cellpadding="5" border="1" class="wikitable" | ||
|- | |- | ||
Line 227: | Line 255: | ||
! URL | ! URL | ||
|- | |- | ||
| iptraf | | {{pkg|iperf}} | ||
| Tool to measure IP bandwidth using UDP or TCP | |||
| https://github.com/esnet/iperf | |||
|- | |||
| {{pkg|iptraf-ng}} | |||
| A console-based network monitoring utility | | A console-based network monitoring utility | ||
| | | https://fedorahosted.org/iptraf-ng/ | ||
|- | |- | ||
| | | {{pkg|iftop}} | ||
| Command line tool that displays bandwidth usage on an interface | | Command line tool that displays bandwidth usage on an interface | ||
| | | https://www.ex-parrot.com/~pdw/iftop/ | ||
|- | |||
| {{pkg|fping}} | |||
| A utility to ping multiple hosts at once | |||
| https://fping.sourceforge.net/ | |||
|- | |||
| {{pkg|mtr}} | |||
| Full screen ncurses traceroute tool | |||
| https://www.bitwizard.nl/mtr/ | |||
|- | |||
| {{pkg|nfdump}} | |||
| The nfdump tools collect and process netflow data on the command line | |||
| https://github.com/phaag/nfdump | |||
|- | |||
| {{pkg|nethogs}} | |||
| Top-like monitor for network traffic | |||
| https://raboof.github.io/nethogs/ | |||
|- | |||
| {{pkg|iptstate}} | |||
| Top-like interface to netfilter connection-tracking table | |||
| https://www.phildev.net/iptstate/ | |||
|} | |||
== Misc tools == | |||
{| cellpadding="5" border="1" class="wikitable" | |||
|- | |||
! Name | |||
! Description | |||
! URL | |||
|- | |||
| {{pkg|bash-completion}} | |||
| Command-line tab-completion for bash | |||
| https://github.com/scop/bash-completion | |||
|- | |- | ||
| clamav | | {{pkg|clamav}} | ||
| An anti-virus toolkit for UNIX | | An anti-virus toolkit for UNIX | ||
| | | https://www.clamav.net | ||
|- | |- | ||
| | | {{pkg|7zip}} | ||
| A command-line port of the 7zip compression utility | | A command-line port of the 7zip compression utility | ||
| | | https://7-zip.org/ | ||
|- | |- | ||
| nano | | {{pkg|nano}} | ||
| A simple ncurses text editor | | A simple ncurses text editor | ||
| | | https://www.nano-editor.org/ | ||
|- | |||
| {{pkg|rsync}} | |||
| A file transfer program to keep remote files in sync | |||
| https://rsync.samba.org/ | |||
|- | |||
| {{pkg|screen}} | |||
| A terminal multiplexer, used to multiplex several virtual consoles. Similar to "tmux" below | |||
| https://www.gnu.org/software/screen/ | |||
|- | |||
| {{pkg|tmux}} | |||
| A terminal multiplexer, used to multiplex several virtual consoles. Similar to "screen" above | |||
| https://tmux.github.io/ | |||
|- | |||
| {{pkg|multitail}} | |||
| A tool to view one or multiple files | |||
| https://www.vanheusden.com/multitail | |||
|- | |||
| {{pkg|e2fsprogs}} | |||
| Standard Ext2/3/4 filesystem utilities | |||
| https://e2fsprogs.sourceforge.net/ | |||
|- | |||
| {{pkg|openssh}} | |||
| An open source implementation of SSH protocol versions 1 and 2 | |||
| https://www.openssh.com/ | |||
|- | |- | ||
| | | {{pkg|partclone}} | ||
| | | Back up and restore used-blocks of a partition | ||
| . | | https://partclone.org/ | ||
|- | |- | ||
| | | {{pkg|sshguard}} | ||
| | | Log monitor that blocks with iptables on bad behaviour | ||
| | | https://www.sshguard.net/ | ||
|- | |- | ||
| | | {{pkg|proxychains-ng}} | ||
| A | | A tool that forces any TCP connection through proxies | ||
| | | https://github.com/rofl0r/proxychains-ng | ||
|- | |- | ||
| | | {{pkg|knock}} | ||
| A | | A simple port-knocking daemon | ||
| | | https://github.com/TDFKAOlli/knock | ||
|- | |- | ||
| | | {{pkg|logcheck}} | ||
| A | | A simple utility which is designed to allow a system administrator to view the logfiles | ||
| | | https://logcheck.org | ||
|- | |- | ||
| | | {{pkg|mc}} | ||
| A | | A visual file manager | ||
| | | https://midnight-commander.org/ | ||
|- | |- | ||
| | | {{pkg|makepasswd}} | ||
| | | Generates (pseudo-)random passwords of a desired length | ||
| | | https://www.defora.org/os/project/117/makepasswd | ||
|- | |- | ||
| | | {{pkg|lnav}} | ||
| | | A curses-based tool for viewing and analyzing log files | ||
| | | https://lnav.org | ||
|- | |- | ||
| | | {{pkg|goaccess}} | ||
| | | A real-time web log analyzer and interactive viewer | ||
| | | https://goaccess.io/ | ||
|} | |} | ||
<!-- | |||
| macchanger | |||
| An utility for viewing/manipulating the MAC address of network interfaces | |||
| http://www.alobbs.com/macchanger | |||
| denyhosts | |||
| A script to help thwart ssh server attacks | |||
| https://denyhosts.sourceforge.net/ | |||
| fwknop | |||
| A cobination of port knocking and passive OS fingerprinting | |||
| https://www.cipherdyne.org/fwknop/ | |||
--> | |||
== | == VoIP== | ||
{| cellpadding="5" border="1" class="wikitable" | {| cellpadding="5" border="1" class="wikitable" | ||
Line 294: | Line 396: | ||
! URL | ! URL | ||
|- | |- | ||
| | | {{pkg|sipp}} | ||
| | | A test tool / traffic generator for the SIP protocol | ||
| | | https://sipp.sourceforge.net/ | ||
|- | |- | ||
| | | {{pkg|sipsak}} | ||
| | | SIP swiss army knife | ||
| | | https://github.com/nils-ohlmeier/sipsak | ||
|} | |} | ||
== Wireless == | |||
{| cellpadding="5" border="1" class="wikitable" | |||
|- | |||
! Name | |||
! Description | |||
! URL | |||
|- | |- | ||
| aircrack-ng | | {{pkg|aircrack-ng}} | ||
| 802.11 (wireless) sniffer and WEP/WPA-PSK key cracker | | 802.11 (wireless) sniffer and WEP/WPA-PSK key cracker | ||
| | | https://www.aircrack-ng.org/ | ||
|- | |||
| {{pkg|kismet}} | |||
| A WLAN detector, sniffer, and IDS | |||
| https://www.kismetwireless.org/ | |||
|- | |||
| {{pkg|reaver-wps-fork-t6x}} | |||
| WPS Password Cracker | |||
| https://github.com/t6x/reaver-wps-fork-t6x | |||
|- | |||
| {{pkg|wavemon}} | |||
| Ncurses-based monitoring application for wireless network devices | |||
| https://github.com/uoaerg/wavemon | |||
|} | |||
== Intrusion detection == | == Intrusion detection == | ||
Line 326: | Line 438: | ||
! URL | ! URL | ||
|- | |- | ||
| nebula | | {{pkg|nebula}} | ||
| An Intrusion Signature Generator | | An Intrusion Signature Generator | ||
| | | https://github.com/slackhq/nebula | ||
|- | |- | ||
| snort | | {{pkg|snort}} | ||
| A network intrusion prevention and detection system | | A network intrusion prevention and detection system | ||
| | | https://www.snort.org/ | ||
|} | |} | ||
<!-- | |||
More tools: | |||
https://sectools.org/tag/new/ | |||
https://www.voipsa.org/Resources/tools.php | |||
http://securitytube-tools.net/index.php?title=Welcome_to_SecurityTube_Tools | |||
http://www.goitworld.com/top-15-free-sql-injection-scanners/ | |||
--> | |||
[[Category:ISO]] | |||
[[Category:Security]] |
Latest revision as of 08:53, 7 July 2024
This material is obsolete ... See notice on Alpine Security and Rescue (Discuss) |
Basics
Name | Description | URL |
---|---|---|
alpine-base | Alpine base package | https://pkgs.alpinelinux.org/packages?name=alpine-base |
alpine-mirrors | List of Official Alpine Linux Mirrors | https://mirrors.alpinelinux.org/ |
kbd-bkeymaps | Binary keymaps for busybox | https://pkgs.alpinelinux.org/packages?name=kbd-bkeymaps |
network-extras | Meta package to pull in vlan, bonding, bridge and wifi support | https://pkgs.alpinelinux.org/packages?name=network-extras |
openssl | Toolkit for TLS | https://www.openssl.org/ |
tzdata | Timezone data | https://www.iana.org/time-zones |
Code Analysis
Name | Description | URL |
---|---|---|
py3-pylint | Analyzes Python code looking for bugs and signs of poor quality | https://pypi.org/project/pylint/ |
flawfinder | Examines C/C++ source code for security flaws | https://www.dwheeler.com/flawfinder/ |
py3-pyflakes | A passive checker of Python programs | https://launchpad.net/pyflakes |
strace | A useful diagnositic, instructional, and debugging tool | https://strace.io/ |
valgrind | A tool for finding memory-management problems | https://valgrind.org/ |
Forensics / Data recovery tools
Name | Description | URL |
---|---|---|
ddrescue | Data recovery tool for block devices with errors | https://www.gnu.org/s/ddrescue/ddrescue.html |
testdisk | A powerful free data recovery software | https://www.cgsecurity.org/wiki/TestDisk |
scrub | Disk scrubbing program | https://code.google.com/archive/p/diskscrub/ |
ncdu | A curses-based version of the well-known "du" | https://dev.yorhel.nl/ncdu |
htop | An interactive process viewer for Linux | https://htop.dev/ |
wipe | Tool for securely erasing files from magnetic media | https://wipe.sourceforge.net/ |
jhead | An Exif jpeg header manipulation tool | https://www.sentex.net/~mwandel/jhead/ |
Reconnaissance
Name | Description | URL |
---|---|---|
arpon | ARP handler inspection | https://arpon.sourceforge.io/ |
dnsenum | A tool to enumerate DNS info about domains | https://github.com/fwaeytens/dnsenum |
scanssh | Fast SSH server and open proxy scanner | https://monkey.org/~provos/scanssh/ |
ngrep | Network layer grep tool | https://github.com/jpr5/ngrep/ |
scapy | Interactive packet manipulation tool and network scanner | https://scapy.net/ |
socat | Bidirectional data relay between two data channels ('netcat++') | |
tcpdump | A network traffic monitoring tool | https://www.tcpdump.org/ |
tcpflow | A tool for monitoring, capturing and storing TCP connections flows | https://github.com/simsong/tcpflow |
nmap | A network exploration tool and security/port scanner | https://nmap.org |
arpwatch | An ethernet monitoring program | https://ee.lbl.gov/ |
p0f | Passive traffic fingerprinting tool | https://lcamtuf.coredump.cx/p0f3/ |
hping3 | A ping-like TCP/IP packet assembler/analyzer |
|
sslscan | fast SSL/TLS configuration scanner | https://github.com/rbsec/sslscan |
httpry | A packet sniffer designed for HTTP traffic | https://dumpsterventures.com/jason/httpry |
bannergrab | A banner grabbing tool | https://sourceforge.net/projects/bannergrab |
dnstop | A DNS traffic capture utility | |
swaks | A transaction-oriented SMTP test tool | https://www.jetmore.org/john/code/swaks/ |
mitmproxy | An interactive SSL-capable intercepting HTTP proxy | https://www.mitmproxy.org/ |
hexinject | A very versatile packet injector and sniffer | https://hexinject.sourceforge.net/ |
openvas-scanner | Vulnerability scanner and manager | https://www.openvas.org/ |
Application Testing
Name | Description | URL |
---|---|---|
lynis | Security and system auditing tool | https://cisofy.com/lynis/ |
nikto | A web application security scanner | https://www.cirt.net/Nikto2 |
sqlmap | Automatic SQL injection and database takeover tool | https://sqlmap.org/ |
zaproxy | OWASP Zed Attack Proxy web app scanner | https://www.zaproxy.org/ |
Network statistics
Name | Description | URL |
---|---|---|
iperf | Tool to measure IP bandwidth using UDP or TCP | https://github.com/esnet/iperf |
iptraf-ng | A console-based network monitoring utility | https://fedorahosted.org/iptraf-ng/ |
iftop | Command line tool that displays bandwidth usage on an interface | https://www.ex-parrot.com/~pdw/iftop/ |
fping | A utility to ping multiple hosts at once | https://fping.sourceforge.net/ |
mtr | Full screen ncurses traceroute tool | https://www.bitwizard.nl/mtr/ |
nfdump | The nfdump tools collect and process netflow data on the command line | https://github.com/phaag/nfdump |
nethogs | Top-like monitor for network traffic | https://raboof.github.io/nethogs/ |
iptstate | Top-like interface to netfilter connection-tracking table | https://www.phildev.net/iptstate/ |
Misc tools
Name | Description | URL |
---|---|---|
bash-completion | Command-line tab-completion for bash | https://github.com/scop/bash-completion |
clamav | An anti-virus toolkit for UNIX | https://www.clamav.net |
7zip | A command-line port of the 7zip compression utility | https://7-zip.org/ |
nano | A simple ncurses text editor | https://www.nano-editor.org/ |
rsync | A file transfer program to keep remote files in sync | https://rsync.samba.org/ |
screen | A terminal multiplexer, used to multiplex several virtual consoles. Similar to "tmux" below | https://www.gnu.org/software/screen/ |
tmux | A terminal multiplexer, used to multiplex several virtual consoles. Similar to "screen" above | https://tmux.github.io/ |
multitail | A tool to view one or multiple files | https://www.vanheusden.com/multitail |
e2fsprogs | Standard Ext2/3/4 filesystem utilities | https://e2fsprogs.sourceforge.net/ |
openssh | An open source implementation of SSH protocol versions 1 and 2 | https://www.openssh.com/ |
partclone | Back up and restore used-blocks of a partition | https://partclone.org/ |
sshguard | Log monitor that blocks with iptables on bad behaviour | https://www.sshguard.net/ |
proxychains-ng | A tool that forces any TCP connection through proxies | https://github.com/rofl0r/proxychains-ng |
knock | A simple port-knocking daemon | https://github.com/TDFKAOlli/knock |
logcheck | A simple utility which is designed to allow a system administrator to view the logfiles | https://logcheck.org |
mc | A visual file manager | https://midnight-commander.org/ |
makepasswd | Generates (pseudo-)random passwords of a desired length | https://www.defora.org/os/project/117/makepasswd |
lnav | A curses-based tool for viewing and analyzing log files | https://lnav.org |
goaccess | A real-time web log analyzer and interactive viewer | https://goaccess.io/ |
VoIP
Name | Description | URL |
---|---|---|
sipp | A test tool / traffic generator for the SIP protocol | https://sipp.sourceforge.net/ |
sipsak | SIP swiss army knife | https://github.com/nils-ohlmeier/sipsak |
Wireless
Name | Description | URL |
---|---|---|
aircrack-ng | 802.11 (wireless) sniffer and WEP/WPA-PSK key cracker | https://www.aircrack-ng.org/ |
kismet | A WLAN detector, sniffer, and IDS | https://www.kismetwireless.org/ |
reaver-wps-fork-t6x | WPS Password Cracker | https://github.com/t6x/reaver-wps-fork-t6x |
wavemon | Ncurses-based monitoring application for wireless network devices | https://github.com/uoaerg/wavemon |
Intrusion detection
Name | Description | URL |
---|---|---|
nebula | An Intrusion Signature Generator | https://github.com/slackhq/nebula |
snort | A network intrusion prevention and detection system | https://www.snort.org/ |