Skip to main content

80 of the Best Linux Security Applications

Artikel ini sudah lama tahn 2008, tetapi terkadang saya masih membutuhkannya. Untuk dokumentasi coba masukan di blogger ini.

80 of the Best Linux Security Applications
Anti-Virus
AMaViS Mail virus scanner
Avast! Virus protection, with anti-spyware and anti-rootkit software
AVG Free Anti-virus and Anti-spyware software
ClamAV Anti-virus toolkit, designed especially for e-mail scanning on mail gateways
P3Scan Scans email messages


Anti-Malware
chkrootkit Check for signs of a rootkit
OSSEC Rootkit detection
Nixory Anti Spyware program open source for Mozilla Firefox
rkhunter Scans for rootkits, backdoors and possible local exploits

Encryption
GnuPG Encrypt and sign data and communication
MailCrypt Simple interface to public key cryptography with PGP
MCrypt Developer tool for adding a wide range of encryption functions
OpenSignature Digital signature of documents
PeaZip Portable, open source archiving, encryption and file split tool
Seahorse GNOME application for managing encryption keys
Steghide Hide data in various kinds of image- and audio-files
Stunnel Encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer)
TrueCrypt Disk encryption software

Firewalls / Network Gateways
ClarkConnect Dedicated firewall and Internet server/gateway
FireHOL Stateful iptables packet filtering firewall configurator
Firestarter Visual firewall program
Netfilter Packet filtering framework
IPCop
 Linux firewall distribution
ShellTer Iptables-based firewall supporting port forwarding, blacklisting, whitelisting
Shorewall High-level tool for configuring Netfilter
Untangle Commercial-grade open source alternative to SonicWALL and WatchGuard
Turtle Firewall Firewall configuration project based on Linux 2.4.x/2.6.x and iptables
Vuumuur Powerful firewall manager built on top of iptables

Intrustion Detection
AFICK Monitor the changes on your filesystems
BASE Web front-end to query and analyze the alerts from a SNORT IDS system
Bro Passively monitors network traffic and looks for suspicious activity
Kismet Wireless network detector, sniffer, and intrusion detection system
OSSEC Open Source Host-based Intrusion Detection System
Sguil Analyst Console for Network Security Monitoring
SNARE System iNtrusion Analysis and Reporting Environment
Snort Network intrusion prevention and detection
Snort_inline Modified version of Snort
Tripwire Provides configuration audit and control features


Network Monitoring
AIM Sniff Monitoring and archiving AOL Instant Messenger and MSN messages
Argus Fixed-model Real Time Flow Monitor
Nagios Host and network monitoring tool
Nipper Network Infrastructure Configuration Parser
NSAT Network Security Analysis Tool
ntop Network traffic probe that shows the network usage
SEC Simple Event Correlator
SniffDet Remote Sniffer Detection Tool/Library
tcpdump Network debugging tool

Network Traffic Analyzer
dsniff Collection of tools for network auditing and penetration testing
Ettercap Multipurpose sniffer/interceptor/logger for switched LAN
ngrep Network grep
Kismet Wireless network detector, sniffer, and intrusion detection system
Wireshark Network protocol analyzer

Packet Crafting
Hping3 TCP/IP packet assembler/analyzer
Nemesis Packet crafting and injection utility
Scapy Interactive packet manipulation program
Yersinia Network tool to take advantage of weaknesses in network protocols

Portscanner
Angry IP Scanner Fast and friendly network scanner
Knocker TCP security port scanner
Unicornscan User-land Distributed TCP/IP stack for information gathering and correlation


Vulnerability Scanner
Nessus Comprehensive vulnerability scanning software
SARA Third generation security analysis tool that is based on the SATAN model
Tiger Perform a security audit of UNIX systems

Log File Analyzers
AWStats Advanced web, streaming, ftp or mail server statistics, graphically
IPtables Log Analyzer Analyzes the log output from an iptables firewall
tcpreplay Use previously captured traffic in libpcap format to test network devices
tcptrace Analyze TCP dump files
The Webalizer Web server log file analysis

Data Removal
Darik's Boot and Nuke Self-contained boot floppy that securely wipes hard disks
Wipe Secure file wiping utility

Password Management
Figaro's Password Manager GNOME application that allows password to be securely stored
KeePassX Lightweight and easy-to-use password manager

VPN Tools
Poptop PPTP server solution
OpenVPN Full-featured SSL VPN solution
SSL Explorer Fully-featured, web-based SSL VPN server


Forensics
ODESSA Open Digital Evidence Search and Seizure Architecture

Other Tools
Denyhosts SSH attack prevention
iptables Configure the Netfilter tables, chains, and rules
mtr Network diagnostic tool
Netcat Reads and writes data across network connections
Nikto Web server scanner performing comprehensive tests against web servers
OpenSSH SSH connectivity tools
Smart Sign Smartcard based digital signature

Popular posts from this blog

Freenas Snapshots Replication Backup

Mungkin anda sudah mengetahui Freenas sebelumnya. Ya..Freenas adalah salah satu software NAS Storage berbasis FreeBSD. Karena kehandalannya, Freenas banyak digunakan sebagai NAS Storage di dunia IT. Saya pernah berfikir bagaimana jika Freenas yang kita gunakan mengalami masalah, crash misalnya. Mungkin jika hardisknya menggunakan RAID bisa tinggal ganti disknya. Bagaimana jika tidak ada RAID (hari gini Server gak ada Raid hdewww heee) atau hal lain yang membuat data tidak bisa digunakan di Freenas. Tutorial ini saya buat untuk berbagi ilmu kepada rekan2 sekalian. Saya akan coba membuat Replikasi Freenas. Dimana Dataset pada salah satu Freenas (Freenas A) akan di snapshot dan di replikasikan ke Freenas B Hal yang perlu disiapkan : 1.  Freenas A : 192.168.100.1 (Primary) Disk 8GB x 2 2.  Freenas B : 192.168.100.2 (Secondary) Disk 8GB x 2 SETING FREENAS A DAN B Kita akan buat raid mirror untuk 2 disk. Storage - Volume Manager   Volume Name :
Read more

Migrasi Nextcloud 19 ke Nextcloud 20.02 (Beda Server)

Server A : 192.168.0.1 (Server lama : Centos 7), port 80 Server B : 192.168.0.2 (Server baru : Centos 8), port 80 Nginx Load Balance : 192.168.0.10, port 443 untuk SSL Tahapan : 1. Upgrade Nextcloud 19.0.3 ke 19.0.5 (server lama) 2. Instalasi server baru (Centos 8) 3. Backup dan restore data nextcloud dan databas ke server baru 4. Konfigurasi Nextcloud di server baru dan Nginx Server 5. Finish A. Upgrade Nextcloud 19.0.3 ke 19.0.5 Untuk Upgrade 19.0.3 ke 20.0.2 tidak dapat dijalankan secara langsung. Harus bertahap upgrade ke versi minor. 19.0.3 -> 19.0.5 secara otomais. Dan upgrade ke 20.0.2 secara manual. 1. Login ke Nextcloud 2. Setting - Administration-Overview 3. Versi yang tersedia 19.0.5 5. Pilih Open updater  4. Start Update 5.  Pilih No (for usage of the web based updater), untuk mode maintenance dan upgrade via console. 6. Masuk ke console dan ke directory /var/www/html/nextcloud 7. Jalankan $ sudo   - u  apache   php occ upgrade 8. Maintenance mode masih dalam keadaan
Read more

Zimbra Error Subject : ***UNCHECKED***

Beberapa hari yang lalu Subject email Zimbra selalu di tambahkan tulisan ***UNCHECKED***. Padahal tidak ada perubahan konfigurasi mail server sebelumnya. Cari di google ada beberapa referensi yaitu merubah file /opt/zimbra/. Tahapan : #su root #cd /opt/zimbra/amavisd/bin #cp -pa amavisd amavid.org #vi amavisd Rubah isi file di baris : #su zimbra $undecipherable_subject_tag = '***UNCHECKED*** '; menjadi $undecipherable_subject_tag = '';   $zmamavisdctl restart Di hari berikutnya saya coba cek kembali utilisasi mail dengan 'top'. Terilhat penggunaan clamd sebesar 100%. Coba dicek di log /var/log/zimbra.log |grep clamd hasilnya mail amavis[26778]: (26778-07) ClamAV-clamd: All attempts (1) failed connecting to /opt/zimbra/data/clamav/clamav.sock, retrying (1) Oct 24 10:10:43 mail amavis[26778]: (26778-07) (!)connect to /opt/zimbra/data/clamav/clamav.sock failed, attempt #1: Can't connect to UNIX socket /opt/zimbra/data/clamav/clamav.sock: Co
Read more