(Work in progress; note that this list is necessarily incomplete and may contain incorrect information)
| Name | Link | Status f: freeware g: GPL c: commercial i: |
Plattform | Bemerkungen |
Scanners / vulnerability checkers |
||||
| SATAN | f | Classic tool, now overtaken | ||
| SAINT | http://wwdsilx.wwdsi.com/saint/ | f | Update of SAINT | |
| SARA | http://www-arc.com/sara/sara.html | f | The successor of SATAN/SAINT | |
| Internet Security Scannner ISS | http://www.iss.net/ | c | Windows | Previously freely available scanner software, now a commercial product |
| nmap | http://www.nmap.org/ | f | Linux | simple but powerful scanner |
| Nessus | http://www.nessus.org/ | f | Linux
(Windows) |
Linux-based Internet security scanner. |
| NetRecon | www.axent.com | c | Windows | |
| HackerShield | www.bindview.com | c | Windows | |
| CyberCop Scanner | www.pgp.com | c | Windows | |
| Retina | www.eeye.com | c | Windows | |
Network analyzers |
||||
| Shomiti Surveyor | http://www.shomiti.com | c | Comfortable GUI, supports distributed monitoring, hardware options available | |
| Sniffer | http://www.sniffer.com/ | c | ||
| tcpdump | http://www.tcpdump.org/ | f | Unix | |
| ethereal | http://www.ethereal.com/ | f | Unix | |
Secure access |
||||
| Kerberos | http://web.mit.edu/kerberos/www/ http://www.contrib.andrew.cmu.edu/~shadow/kerberos.html |
not accessible from outside North America | ||
| ftp://ftp.pdc.kth.se/pub/krb/ | Kerberos V4 source (located in Europe) | |||
| Secure Shell (ssh) http://www.ssh.com/ |
OpenSSH (http://www.openssh.com/) | g | Unix | Open source ssh v1 and v2 |
| F-Secure ssh (http://www.f-secure.com/) | c | all | ||
| stunnel | http://www.stunnel.org | f | Unix | |
| SSL / TSL | OpenSSL (http://www.openssl.org) | |||
VPN-Lösungen |
||||
| PGPNet | http://www.pgpi.org/ | |||
| IPSec-Implementierung von Microsoft | http://www.microsoft.com | c | Windows 2000 | see windows help function |
| PPTP (Microsoft) | http://www.microsoft.com | c | Windows | see windows help function |
| FreeS/WAN | http://www.freeswan.org/ | f | Unix | |
|
|
||||
| S/MIME | Supported by popular browsers | |||
| PGP | http://www.pgpi.org/, http://www.nai.com | f, c | Commercial version by Network Associates Inc. | |
| GPG | http://www.gnupg.org/ | g | Open source PGP implementation | |
Virus scanners |
||||
| Symantec/Norton | http://enterprisesecurity.symantec.com/content/productlink.cfm#0 | c | Complete security management suite | |
| NAI/McAfee | http://www.mcafee.com/ | c | Complete security management suite | |
| F-Prot | http://www.complex.is/f-prot/ | c | ||
| Sophos | http://www.sophos.com/ | c | ||
| Kaspersky™ Anti-Virus | http://www.kaspersky.com/ | |||
Firewalls |
||||
| ipchains | http://netfilter.filewatcher.org/ipchains/ | f | Linux | Linux firewall technology (kernels 2.0.x-2.2.x) |
| iptables/netfilter | http://netfilter.filewatcher.org/ | f | Linux | Successor of IPchains for Linux kernel 2.4.x |
| Checkpoint FireWall-1 | http://www.checkpoint.com/ | c | Software for W2k, NT, Unix and integrated appliance | |
| socks | http://www.socks.nec.com/refsoftware.html | f | Secure proxy for application services | |
Intrusion Detection Tools |
||||
| snort | http://www.snort.org/ | |||
Other Security Related Software |
||||
| D.J. Bernstein's Software Pages | http://cr.yp.to | f | Unix | Reimplementation of common unix tools(mail, dns, inetd, httpd, ...) with special focus on security |
| Hacking Angels | http://www.wheres.com/etc/FatherQuinn/bios.html | Intel based PC's | BIOS assault tools and other stuff. | |
| The Deception Toolkit Home Page | http://all.net/dtk/download.html | Unix | Service simulator. Make it harder for the black hats! | |
| Trinux | http://www.trinux.org/ | g | Linux | Small Linux distro as universal security tool. |
| netcat | http://www.zoran.net/wm_resources/netcat_hobbit.asp also: http://www.l0pht.com/~weld/netcat/ |
f | Unix/Windows | tcp/udp "Swiss Army knife", very useful for debugging |
Web pages with Internet-related security kowledge |
||||
| Tom Fischer's security links | http://helpdesk.rus.uni-stuttgart.de/~rustomfi/ | i | ||
| CERT der Universität Stuttgart | http://cert.uni-stuttgart.de/ | i | ||
| SWITCH-CERT | http://www.switch.ch/cert/ | i | ||
| Windows 2000 Kerberos | http://www.microsoft.com/windows2000/library/howitworks/security/kerberos.asp | i | ||
| Internet Security Resource page | http://www.canis.uiuc.edu/~bgross/security.html | i | Many links to security related material | |
| Network Computing vulnerability scanner test report (Jan. 2001) | http://www.nwc.com/1201/1201f1b2.html | i | ||
| Unix Host and Network Security Tools | http://csrc.nist.gov/tools/tools.htm | |||
| Links to Network Security Resources | http://www.itprc.com/security.htm | |||
| RootPrompt.org | http://www.rootprompt.org/ Good Linux hardening article: Part 1 Part 2 |
Unix | Unix Security | |
| packet storm | http://packetstorm.securify.com/ | Tools, News and Documents | ||
| Top Ten Exploits by SANS Institute | http://www.sans.org/topten.htm | The most pressing problems | ||
| The Honeynet Project | http://project.honeynet.org/ | How to study hackers with honeypots | ||
| DigiCrime, Inc. | http://www.digicrime.com/ | The lighter side | ||
| Ross Anderson's ftp space | ftp://ftp.cl.cam.ac.uk/users/rja14/ | Papers on Tamper Resistance, Smartcards and other things | ||
| A phrack magazine archive | http://phrack.infonexus.com/ | Hacker magazine; current and historic issues | ||