| CommNet 2.0 | |
| Submit Date: 10/19/2001 2:17:54 PM | License Info: Shareware Price: see website |
| Short Description: Enables Telnet and dial-up connections. | |
| Web Link: http://www.radient.com/cmnet20.zip | |
| Home Page: http://www.radient.com/ | |
Rating:  | |
| Submitted By: TUCOFS referral service | |
| Information: Enables Telnet and dial-up connections. | |
| LaBrea | |
| Submit Date: 10/9/2001 1:49:34 PM | License Info: GPL Price: free - see website |
| Short Description: Create a sticky-honeypot to stop Internet worms and other abusers | |
| Web Link: http://www.hackbusters.net/LaBrea/ | |
| Home Page: http://www.hackbusters.net/ | |
Rating:  | |
| Submitted By: CERI Labs | |
| Information: CERI rating - due to innovation and effectiveness.
Complete information about LaBrea located at
http://www.hackbusters.net/LaBrea/
and also at
http://www.incidents.org/archives/intrusions/msg01368.html | |
| NetWitness | |
| Submit Date: 5/13/2001 12:55:14 AM | License Info: commercial Price: see website |
| Short Description: Gives system administrators, investigators, or security personnel the history to know who did what, | |
| Web Link: http://www.forensicsexplorers.com/software.asp | |
| Home Page: http://www.forensicsexplorers.com/ | |
| Rating: | |
| Submitted By: Mark Longworth | |
| Information: The histograms of LAN traffic produced by the NetWitness Network Forensics System have the following applications:
Network Auditing for Appropriate Use Policies,
Employee Surveillance and Investigation,
Intellectual Property Protection,
Incident Response for External Hacker Attacks,
Intrusion Detection System Supplementation,
Network Incident Damage Assessment,
Network Security Health Monitoring | |
| Secure CommNet 2.0 | |
| Submit Date: 10/19/2001 2:17:09 PM | License Info: Shareware Price: see website |
| Short Description: Enables Secure Shell (SSH2), Telnet, and Dial-up | |
| Web Link: http://www.radient.com/scmnet20.zip | |
| Home Page: http://www.radient.com/ | |
| Rating: | |
| Submitted By: TUCOFS referral service | |
| Information: Enables Secure Shell (SSH2), Telnet and dial-up
connections.
| |
| SNORT | |
| Submit Date: 9/27/2001 3:11:56 PM | License Info: GPL Price: free |
| Short Description: Award winning Intrusion Detection System | |
| Web Link: http://www.snort.org/ | |
| Home Page: http://www.snort.org/ | |
| Rating: | |
| Submitted By: CERI Labs | |
| Information: CERI Lab Note: SNORT is a powerful program that has applications for both IDS for business as well as for law enforcement network investigations. Contact us at cerilabs@cyberenforcement.com for questions as well as implementation solutions.
---------
The Open Source Network Intrusion Detection System. There are three main modes in which Snort can be configured: sniffer, packet logger, and network intrusion detection system. Sniffer mode simply reads the packets off of the network and displays them for you in a continuous stream on the console. Packet logger mode logs the packets to the disk. Network intrusion detection mode is the most complex and configurable configuration, allowing Snort to analyze network traffic for matches against a user defined rule set and perform several actions based upon what it sees. | |
| StegAlyzerSS | |
| Submit Date: 7/26/2005 3:24:36 PM | License Info: Single-user Price: |
| Short Description: Steganography Analyzer Signature Scanner | |
| Web Link: http://www.sarc-wv.com/products.aspx | |
| Home Page: http://www.backbonesecurity.com | |
| Rating: | |
| Submitted By: Webmaster | |
| Information: StegAlyzerSS detects 29 distinct signatures of steganography applications and also includes functions to identify file types that may be potential carrier files (i.e., may contain hidden information). Techniques and procedures available to extract information hidden with each of the 29 applications for which a signature exists. Contact the SARC for details and pricing.
| |
| Steganography Application Fingerprint Database (SAFDB) | |
| Submit Date: 7/26/2005 3:20:58 PM | License Info: Single-user Price: |
| Short Description: MS Access database that contains application profiles for 230 digital steganography applications and | |
| Web Link: http://www.sarc-wv.com/products.aspx | |
| Home Page: http://www.backbonesecurity.com | |
| Rating: | |
| Submitted By: Webmaster | |
| Information: SAFDB can be use to help the examiner determine if a
steganography application exists on seized or suspect storage media. If a
steganography application is found, chances are it was used to hide something. The application profiles in SAFDB can be consulted to determine the technique used to hide the information which may facilitate attempts to extract any hidden information. Copies of the steganography applications are available from the SARC's archives for use by the examiner and/or SARC technical staff to attempt hidden information extraction. | |
| Stunnel | |
| Submit Date: 6/20/2002 10:10:38 AM | License Info: see website Price: (free) see website |
| Short Description: Universal SSL Wrapper | |
| Web Link: http://www.stunnel.org/ | |
| Home Page: http://www.stunnel.org/ | |
| Rating: | |
| Submitted By: CERI Research | |
| Information: Stunnel is a program that allows you to encrypt arbitrary TCP connections inside SSL (Secure Sockets Layer) available on both Unix and Windows. Stunnel can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code. | |
| X-Tra Secure | |
| Submit Date: 5/13/2001 1:02:25 AM | License Info: see website Price: see website |
| Short Description: Monitors, secures and centrally manages all business critical data in networks | |
| Web Link: http://www.thunderstore.com | |
| Home Page: http://www.thunderstore.com | |
| Rating: | |
| Submitted By: Dick Geheniau | |
| Information: Our X-Tra Secure technology utilize the capabilities to monitor, log, analyse and manipulate ignorant, inaccurate and malicious data usage on desktops, clients and servers. X-Tra Secure has the ability to run in forensic mode, stand alone mode or client/server mode. | |