|
Virtual eXecuting Environment
VXE is an open source Intrusion Prevention System intended to protect Unix subsystems (daemon protection) from known and unknown network intrusion threats.
http://vxe.quercitron.com
LinuxSecure
This site on Linux and security covers firewalls (iptables), intrusion detection systems (snort), securing services, and Linux security in general. The aim is to provide information about protection, detection, and reaction with respect to attacks.
http://www.linuxsecure.de
Sardonix.org
DARPA-funded community project to audit the source of all Linux applications for security vulnerabilities.
https://www.sardonix.org/
Linux Security
Information collected from many sources: feature articles, advisories, news, documentation, forums, links.
http://www.linuxsecurity.com/
Googgun Technologies Praetor module
Praetor is a kernel-based "Security Enabler" for Linux that provides fine-grained access control.
http://www.googgun.com/
Exploit World - Linux Section
Known vulnerabilities on the Linux system with detailed description.
http://www.insecure.org/sploits_linux.html
Hacking Linux Exposed
Companion Website to Hacking Linux Exposed, Osborne/McGraw-Hill. Source code from the book, updates, and other tools to secure your Linux system.
http://www.hackinglinuxexposed.com/
Linuxbroker - Security
Linuxbroker provides all types of resources you need like Linux newsgroups search engine, daily news, howtos, applications releases tracking and security alerts.
http://security.linuxbroker.com
StegFS - A Steganographic File System for Linux
Not only does it encrypt data, it also hides it such that it cannot be proved to be there.
http://www.mcdonald.org.uk/StegFS/
Password Management System
Designed for System Administrators, to handle user logins for several computers running Linux. It works with a console interface, based on the CDK library that uses ncurses. Import data from csv files and export to text files with a free definable format.
http://passwordms.sourceforge.net/
Linux Audit and Intrusion Detection
InterSect Alliance are the creators of the SNARE Linux C2-style Audit module, and have a consulting background in advanced audit analysis, intrusion detection systems, and forensics for Unix and other operating systems.
http://www.intersectalliance.com/projects/...
Dranch: TrinityOS
Step by step, example driven, HOWTO on building a Linux box with an aim towards strong security. Also, links to resources and mailing lists.
http://www.ecst.csuchico.edu/~dranch/LINUX...
New Security Features in Linux 2.4
Selective privileges (capabilities), cryptography, random number devices.
http://www.linuxsecurity.com/feature_stori...
Penetrator Megablaster
A kernel module that detects and stops overflow attacks, like Linux Buffer Overflow attack security, which aim to get an interactive access to the system.
http://www.angelfire.com/linux/borisl/Mega...
Linux Firewall Howto
Firewall HOWTO collection, ids, nids, hardening, penetration testing, auditing
http://www.linux-sec.net/
SSH, the Secure Shell: The Definitive Guide
This is a companion website for "SSH: The Secure Shell The Definitive Guide" by Daniel Barrett and Richard Silverman (O'Reilly, 2003). It contains technical details on the SSH as well as sample book material.
http://www.snailbook.com
Bastille Linux
Attempts to "harden" (tighten the configuration of) a Red Hat or Mandrake Linux installation.
http://www.bastille-linux.org/
PacketStorm Security
Packet Storm is a non-profit organization comprising computer security professionals that are dedicated to providing the information necessary to secure the networks world-wide. It publishes new security information on a global network of websites. The organization offers an abundant resource of up-to-date and historical security tools, exploits, and advisories. It provides network security professionals, researchers, and all other interested individuals with the ability to analyze and learn from the tools, processes and mindsets of their opponents, as well as offering the tools needed to build and test defenses against them.
http://www.packetstormsecurity.org/
|
2006