80 of the Best Linux Security Applications
| Anti-Virus | |
| AMaViS | Mail virus scanner |
| Avast! | Virus protection, with anti-spyware and anti-rootkit software |
| AVG Free | Anti-virus and Anti-spyware software |
| ClamAV | Anti-virus toolkit, designed especially for e-mail scanning on mail gateways |
| P3Scan | Scans email messages |
| Anti-Malware | |
| chkrootkit | Check for signs of a rootkit |
| OSSEC | Rootkit detection |
| Nixory | Anti Spyware program open source for Mozilla Firefox |
| rkhunter | Scans for rootkits, backdoors and possible local exploits |
| Encryption | |
| GnuPG | Encrypt and sign data and communication |
| MailCrypt | Simple interface to public key cryptography with PGP |
| MCrypt | Developer tool for adding a wide range of encryption functions |
| OpenSignature | Digital signature of documents |
| PeaZip | Portable, open source archiving, encryption and file split tool |
| Seahorse | GNOME application for managing encryption keys |
| Steghide | Hide data in various kinds of image- and audio-files |
| Stunnel | Encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) |
| TrueCrypt | Disk encryption software |
| | |
| Firewalls / Network Gateways | |
| ClarkConnect | Dedicated firewall and Internet server/gateway |
| FireHOL | Stateful iptables packet filtering firewall configurator |
| Firestarter | Visual firewall program |
| Netfilter | Packet filtering framework |
| IPCop | Linux firewall distribution |
| ShellTer | Iptables-based firewall supporting port forwarding, blacklisting, whitelisting |
| Shorewall | High-level tool for configuring Netfilter |
| Untangle | Commercial-grade open source alternative to SonicWALL and WatchGuard |
| Turtle Firewall | Firewall configuration project based on Linux 2.4.x/2.6.x and iptables |
| Vuumuur | Powerful firewall manager built on top of iptables |
| Intrustion Detection | |
| AFICK | Monitor the changes on your filesystems |
| BASE | Web front-end to query and analyze the alerts from a SNORT IDS system |
| Bro | Passively monitors network traffic and looks for suspicious activity |
| Kismet | Wireless network detector, sniffer, and intrusion detection system |
| OSSEC | Open Source Host-based Intrusion Detection System |
| Sguil | Analyst Console for Network Security Monitoring |
| SNARE | System iNtrusion Analysis and Reporting Environment |
| Snort | Network intrusion prevention and detection |
| Snort_inline | Modified version of Snort |
| Tripwire | Provides configuration audit and control features |
| Network Monitoring | |
| AIM Sniff | Monitoring and archiving AOL Instant Messenger and MSN messages |
| Argus | Fixed-model Real Time Flow Monitor |
| Nagios | Host and network monitoring tool |
| Nipper | Network Infrastructure Configuration Parser |
| NSAT | Network Security Analysis Tool |
| ntop | Network traffic probe that shows the network usage |
| SEC | Simple Event Correlator |
| SniffDet | Remote Sniffer Detection Tool/Library |
| tcpdump | Network debugging tool |
| Network Traffic Analyzer | |
| dsniff | Collection of tools for network auditing and penetration testing |
| Ettercap | Multipurpose sniffer/interceptor/logger for switched LAN |
| ngrep | Network grep |
| Kismet | Wireless network detector, sniffer, and intrusion detection system |
| Wireshark | Network protocol analyzer |
| Packet Crafting | |
| Hping3 | TCP/IP packet assembler/analyzer |
| Nemesis | Packet crafting and injection utility |
| Scapy | Interactive packet manipulation program |
| Yersinia | Network tool to take advantage of weaknesses in network protocols |
| Portscanner | |
| Angry IP Scanner | Fast and friendly network scanner |
| Knocker | TCP security port scanner |
| Unicornscan | User-land Distributed TCP/IP stack for information gathering and correlation |
| Vulnerability Scanner | |
| Nessus | Comprehensive vulnerability scanning software |
| SARA | Third generation security analysis tool that is based on the SATAN model |
| Tiger | Perform a security audit of UNIX systems |
| Log File Analyzers | |
| AWStats | Advanced web, streaming, ftp or mail server statistics, graphically |
| IPtables Log Analyzer | Analyzes the log output from an iptables firewall |
| tcpreplay | Use previously captured traffic in libpcap format to test network devices |
| tcptrace | Analyze TCP dump files |
| The Webalizer | Web server log file analysis |
| Data Removal | |
| Darik's Boot and Nuke | Self-contained boot floppy that securely wipes hard disks |
| Wipe | Secure file wiping utility |
| Password Management | |
| Figaro's Password Manager | GNOME application that allows password to be securely stored |
| KeePassX | Lightweight and easy-to-use password manager |
| VPN Tools | |
| Poptop | PPTP server solution |
| OpenVPN | Full-featured SSL VPN solution |
| SSL Explorer | Fully-featured, web-based SSL VPN server |
| Forensics | |
| ODESSA | Open Digital Evidence Search and Seizure Architecture |
| Other Tools | |
| Denyhosts | SSH attack prevention |
| iptables | Configure the Netfilter tables, chains, and rules |
| mtr | Network diagnostic tool |
| Netcat | Reads and writes data across network connections |
| Nikto | Web server scanner performing comprehensive tests against web servers |
| OpenSSH | SSH connectivity tools |
| Smart Sign | Smartcard based digital signature |
