Section: .. / UNIX / IDS /
| /// File Name: |
ncsfck.tar.gz |
Description:
|
NCSfck v1.2.0 - NCSFCK creates a database of important files like "/bin/login". Run as a cronjob for maximum effectiveness. Monitors for backdoor(s) and other trojan(s). web site.
| | File Size: | 3171 | | Last Modified: | Aug 16 20:02:32 1999 |
| MD5 Checksum: | ec3abf28c3eee9a81bd0992522d88c41 |
|
| /// File Name: |
neped-libnet.tar.gz |
Description:
|
Network Promiscuous Ethernet Detector, rewriten with Libnet/libpcap so it works on FreeBSD, OpenBSD, and linux, possibly more. neped scans your subnet and detects promiscuous boxes that might be running sniffers or similar applications, using hacked ARPs (non broadcast), only listened by promiscuous ethernets.
| | Author: | CyberPsychotic | | File Size: | 3740 | | Last Modified: | Dec 13 17:37:42 1999 |
| MD5 Checksum: | ee928946f9d5187fe8a5c6224ad7ebf4 |
|
| /// File Name: |
neped.c |
Description:
|
Network Promiscuous Ethernet Detector. neped scans your subnet and detects promiscuous linux boxes that might be running sniffers or similar applications, using hacked ARPs (non broadcast), only listened by promiscuous ethernets. The answer to hacked ARPs expose promiscuity (presume sniffer). Runs on Linux 2.x with GlibC or libc5.
| | Author: | Els Apostols. | | File Size: | 5011 | | Last Modified: | Aug 16 20:02:28 1999 |
| MD5 Checksum: | c985154f4743b9b0ebd0c2c4d86fad65 |
|
| /// File Name: |
nepenthes-0.1.7.tar.bz2 |
Description:
|
Nepenthes is a low interaction honeypot like honeyd or mwcollect. Low Interaction Honeypots emulate _known_ vulnerabilities to collect information about potential attacks. Nepenthes is designed to emulate vulnerabilities worms use to spread, and to capture these worms. As there are many possible ways for worms to spread, Nepenthes is modular.
| | Homepage: | http://nepenthes.mwcollect.org/ | | File Size: | 514301 | | Last Modified: | Sep 21 20:20:23 2006 |
| MD5 Checksum: | 7eb9fa1e3f819d5aa3c9ac81a572a724 |
|
| /// File Name: |
netbusd.c |
Description:
|
A UNIX clone of Netbuster for Windows 95. Logs people attempting to exploit netbus.
| | Author: | BigDawg. | | File Size: | 11063 | | Last Modified: | Aug 16 20:02:37 1999 |
| MD5 Checksum: | bd0bce4c55db3aeec2f2e0f404f5d2e7 |
|
| /// File Name: |
netl-1.00.tar.gz |
Description:
|
Network logger/sniffer suitable for TCP/IP over Ethernet and loopback. netl is capable of logging everything from pings to telnet, including low level IP like SYNs and RSTs.
| | File Size: | 52427 | | Last Modified: | Aug 16 20:02:25 1999 |
| MD5 Checksum: | d2fedfcdac3ab440b15f764cc8b983e5 |
|
| /// File Name: |
netl-1.01.tar.gz |
Description:
|
netl v1.01 is a network logger/sniffer suitable for TCP/IP over Ethernet and loopback. netl is capable of logging everything from pings to telnet, including low level IP like SYNs and RSTs.
| | Author: | Graham THE Ollis. | | File Size: | 54011 | | Last Modified: | Aug 16 20:02:40 1999 |
| MD5 Checksum: | bb85df6ef22cdc4472ce5872a7af88c8 |
|
| /// File Name: |
netl-1.09.tar.gz |
Description:
|
netl v1.09 is a network logger/sniffer suitable for TCP/IP over Ethernet and loopback which provides functionality not found in similar programs. netl is capable of logging everything from pings to telnet, including low level IP like SYNs and RSTs.
| | Author: | Graham Ollis | | Homepage: | http://www.netl.org | | Changes: | Added perl/Tk interface, fixed some bugs. | | File Size: | 275120 | | Last Modified: | Sep 19 20:43:20 2001 |
| MD5 Checksum: | 8bd85e4f9398ec16cdee9dfe9577628b |
|
| /// File Name: |
nettest-0.9.tar.gz |
Description:
|
Nettest is a program which monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down.
| | Author: | Rene Chaddock. | | Changes: | Supports multiple connections with separate parameters for each connection, automatically forks into background, and a few rcfile parameters have been changed. | | File Size: | 15303 | | Last Modified: | Aug 16 20:02:39 1999 |
| MD5 Checksum: | f25b0854c8f01e502b83062598d19347 |
|
| /// File Name: |
nettest-1.0.tar.gz |
Description:
|
nettest v1.0 is a program that monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down.
| | Author: | Rene Chaddock. | | Changes: | Removed dependencies on external programs. More rcfile options for various configurable settings w/ almost foolproof defaults. More efficient ping code. Minor bug fixes. | | File Size: | 17430 | | Last Modified: | Aug 16 20:02:40 1999 |
| MD5 Checksum: | c0705e221c389233bfd6fcc481c7e492 |
|
| /// File Name: |
nettest-1.1.tar.gz |
Description:
|
nettest 1.1 - Nettest is a program which monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down. It's great for xDSL/Cable/Mission Critical Network Connections.
| | Author: | Rene Chaddock. | | Changes: | Fixed bug where pingnumber exibited other (unwanted) behaviour, fixed bug which caused nettest to crash under certain situations, more reliable email-sending code, added retrytime variable which allows nettest to try connection more frequently when connection is actually down. | | File Size: | 18681 | | Last Modified: | Aug 16 20:02:44 1999 |
| MD5 Checksum: | f233bf84fc53e84eda01124435b36dea |
|
| /// File Name: |
nettest0.8.tar.gz |
Description:
|
nettest v0.8 - Nettest is a program that monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down. 14k.
| | Author: | Rene Chaddock. | | File Size: | 13869 | | Last Modified: | Aug 16 20:02:38 1999 |
| MD5 Checksum: | ad45289c085069ac61134c81d7d235cd |
|
| /// File Name: |
nettest0.81.tar.gz |
Description:
|
nettest v0.81 - Nettest is a program that monitors a network connection, and takes some action (either email, audible notification, syslog entries, or all of the above) if/when the connection goes down.
| | Author: | Rene Chaddock. | | File Size: | 13777 | | Last Modified: | Aug 16 20:02:38 1999 |
| MD5 Checksum: | 235ad0c2475342fffb59015b8388f28c |
|
| /// File Name: |
netwatch0.7e.src.tar.gz |
Description:
|
monitor an ETHERNET and examine activity on the network.
| | File Size: | 188760 | | Last Modified: | Aug 16 20:02:17 1999 |
| MD5 Checksum: | ee57a7ef07be8b956cb7e6bb0383492f |
|
| /// File Name: |
nfr-mod.tar.gz |
Description:
|
L0pht NFR IDS Modules - examples of how to implement IDS functionality with NFR.
| | Author: | L0pht Heavy Industries. Get your copy of Network Flight Recorder at Network Flight Recorder. | | File Size: | 9401 | | Last Modified: | Aug 16 20:02:32 1999 |
| MD5 Checksum: | 6514c6939333a8350738a4aff6d2a4e7 |
|
| /// File Name: |
ng.sh |
Description:
|
ng.sh (netgaurd v1a1) uses tcpdump monitor for common attacks and then activates ipfwadm.
| | Author: | ben-z. | | File Size: | 2700 | | Last Modified: | Aug 16 20:02:45 1999 |
| MD5 Checksum: | 6b861113bde69593d7a9c777c34dde22 |
|
| /// Directory: |
/ nidsbench / |
Description:
|
nidsbench is a network intrusion detection system test suite. nidsbench is being published in the hopes that a more precise testing methodology might be applied to network intrusion detection, which is still a black art at best. This release of nidsbench includes: fragrouter: Implement all IP fragmentation attacks outlined in T. Ptacek and T. Newsham's "Insertion, Evasion, and Denial of Service: Eluding Network Intrusion Detection" paper of January, 1998. tcpreplay: Replay saved tcpdump(8) dumpfiles at arbitrary speeds. nidsbench is published under a BSD-style license, and has been tested on the following platforms: OpenBSD 2.x, FreeBSD 3.x, BSD/OS 2.x, Linux (2.x kernels), Solaris 2.x (tcpreplay only).
| | Author: | Anzen Computing. | | Total Files: | 18 | | Last Modified: | Sep 5 21:20:54 2007 |
|
| /// File Name: |
ninja-0.1.0.tar.bz2 |
Description:
|
Ninja is a privilege escalation detection and prevention system for GNU/Linux hosts. While running, it will monitor process activity on the local host, and keep track of all processes running as root. If a process is spawned with UID or GID zero (root), ninja will log necessary information about this process, and optionally kill the process if it was spawned by an unauthorized user.
| | Author: | Tom Rune Flo | | Homepage: | http://forkbomb.org/ninja/ | | File Size: | 10011 | | Last Modified: | Aug 18 04:02:49 2005 |
| MD5 Checksum: | ff28fafa11525573e22a075fcdbfd7a3 |
|
| /// File Name: |
ninja-0.1.1.tar.bz2 |
Description:
|
Ninja is a privilege escalation detection and prevention system for GNU/Linux hosts. While running, it will monitor process activity on the local host, and keep track of all processes running as root. If a process is spawned with UID or GID zero (root), ninja will log necessary information about this process, and optionally kill the process if it was spawned by an unauthorized user.
| | Author: | Tom Rune Flo | | Homepage: | http://forkbomb.org/ninja/ | | Changes: | Minor updates. | | File Size: | 10591 | | Last Modified: | Aug 19 01:14:13 2005 |
| MD5 Checksum: | deb27909168eb6707fb5a139eef80571 |
|
| /// File Name: |
ninja-0.1.2.tar.bz2 |
Description:
|
Ninja is a privilege escalation detection and prevention system for GNU/Linux hosts. While running, it will monitor process activity on the local host, and keep track of all processes running as root. If a process is spawned with UID or GID zero (root), ninja will log necessary information about this process, and optionally kill the process if it was spawned by an unauthorized user.
| | Author: | Tom Rune Flo | | Homepage: | http://forkbomb.org/ninja/ | | Changes: | Minor updates. | | File Size: | 10796 | | Last Modified: | Sep 1 02:57:33 2005 |
| MD5 Checksum: | 3a94d665869c2c87adf194662353a211 |
|
| /// File Name: |
nocol-4.2.1.tar.gz |
Description:
|
NOCOL(Network Operation Center On-Line)/SNIPS is a system and network monitoring software that runs on Unix systems and can poll network and system devices. It is capable of monitoring nameservers, web ports, host performance, syslogs, radius servers, BGP peers, etc. New monitors can be added easily (via a C or Perl API).
| | Author: | Netplex Technologies. | | File Size: | 574917 | | Last Modified: | Aug 16 20:02:17 1999 |
| MD5 Checksum: | 58cd21604c50ea353385fb55a4904beb |
|
| /// File Name: |
nodewatch-1.6.tar.gz |
Description:
|
NodeWatch is an open source TCP/IP network monitoring tool written in Perl for UNIX.
| | File Size: | 41583 | | Last Modified: | Aug 16 20:02:16 1999 |
| MD5 Checksum: | d8c67cc9a35db752fa3233130a4e3fee |
|
| /// File Name: |
nwho-0.1.0.tar.gz |
Description:
|
nwho and integrated rwho with GUI to help monitor who is logged in and verify that they are who they should be.
| | Author: | James Wilson. | | File Size: | 454232 | | Last Modified: | Aug 16 20:02:16 1999 |
| MD5 Checksum: | 2f294f7613c8d4b13cb3f64241e2c5b2 |
|
| /// File Name: |
openports-0.2.tar.gz |
Description:
|
OpenPorts is a simple script which can be run as a cron job every 5 minutes, checking the open and listening ports on the local system with netstat. If there is a difference since the last time it was run, an e-mail is sent to the system administrator containing the list of new open ports.
| | Author: | Sven Darkman Michaels | | Changes: | Better log analysis, and printing of only the changes. | | File Size: | 2263 | | Last Modified: | Oct 15 18:38:15 2000 |
| MD5 Checksum: | 76384d12f67d37cb17e9d0088d2ee771 |
|
|
|
|
|
![.:[ packet storm ]:.](/images/ps-ani.gif)
