Netfilter tracker is a tracking tool for iptables logs, similar to Checkpoint(tm) Smartview Tracker. Includes storage in an embedded SQL database and a graphical application (viewer) to access filtered data.
|License: Freeware||Size: 1.25 MB||Download (29): Netfilter Tracker Download|
This is a KDE-based wizard aimed at making the process of setting up a linux netfilter firewall easy, especially on distributions with no firewall tool of their own, such as slackware. It creates a shell script, suitable for caling from an init script, or on slackware, being saved as...
|License: Freeware||Size: 583.68 KB||Download (75): KIptablesGenerator Download|
libnfnetlink is the low-level library for netfilter related kernel and userspace communication. It provides a generic messaging infrastructure for in-kernel netfilter subsystems (such as nfnetlink_log, nfnetlink_queue, nfnetlink_conntrack) and their respective users and/or management tools in...
|License: Freeware||Size: 194.56 KB||Download (91): libnfnetlink Download|
WallFire is a very general and modular firewalling application based on Netfilter or any kind of low-level framework. It will enable to manage every aspect of a firewall administration, from configuration to monitoring, intrusion detection, etc... WallFire will provide command line and...
|License: Freeware||Size: 747.52 KB||Download (96): WallFire Download|
pdumpq provides a pcap Dump for Linux/Netfilter QUEUE. pdumpq can be used to take queued packets from netfilter/iptables and dump them to a file that decoders like tcpdump, ethereal, and snort can read. You can also just pipe it through to the packet decoder and see what is in those packets...
|License: Freeware||Size: 27.65 KB||Download (80): pdumpq Download|
The IP Personality project is a patch to the Linux kernels that adds netfilter features: it enables the emulation of other OSes at the network level, thus fooling remote OS detection tools such as nmap that rely on network fingerprinting.
|License: Freeware||Size: 143.36 KB||Download (77): IP Personality Download|
The Port Scan Attack Detector (psad) is a collection of three system daemons that are designed to work with the Linux Netfilter firewalling code to detect port scans and other suspect traffic. Port Scan Attack Detector project features a set of highly configurable danger thresholds (with...
|License: Freeware||Size: 460.8 KB||Download (121): Port Scan Attack Detector Download|
specter is a user-space logging facility for the Linux netfilter system. It uses netfilters ULOG target to gather packets, and passes them to attached plugins. Its features a flexible and robust modularized structure, and is based on ulogd, but has improved design and wider functionality. It...
|License: Freeware||Size: 133.12 KB||Download (75): specter Download|
libnfnetlink is the low-level library for netfilter related kernel/userspace communication. libnetfilter_log provides a generic messaging infrastructure for in-kernel netfilter subsystems (such as nfnetlink_queue, nfnetlink_log, nfnetlink_conntrack) and their respective users and/or management...
|License: Freeware||Size: 194.56 KB||Download (73): libnetfilter_log Download|
DNS Blacklist Packet Filter project is a Linux netfilter client that decides whether to accept or drop packets based on the results of a DNS blacklist query (such as MAPS, SORBS, or SPEWS, to name a few). One use is to filter all incoming SMTP SYN packets for spam filtering..
|License: Freeware||Size: 163.84 KB||Download (287): DNS Blacklist Packet Filter 0.6 Download|
moltiblock is a user-space plugin to netfilter for blocking lots of nets. No need to recompile kernel or patch other sources. To install just type make. Then copy the binary to /usr/local/sbin or wherever. Put one CIDR per line in /etc/moltiblock/cidr.deny, like so: -- snip --...
|License: Freeware||Size: 10.24 KB||Download (74): moltiblock Download|
Nuface is a Web-based administration tool that generates Edenwall, NuFW, or simple Netfilter firewall rules. Nuface project features a high level abstraction on the security policy set by the administrator, and works internally on an XML data scheme. Its philosophy is to let you agglomerate...
|License: Freeware||Size: 450.56 KB||Download (81): Nuface Download|
NetFilter SDK is a framework for transparent filtering the data packets transmitted via network. This is a high performance proxy-less solution, compatible with all antiviruses/firewalls/other network filters. It perfectly suits for developing the content filters, basic application level...
|License: Shareware||Cost: $300.00 USD||Size: 829.44 KB||Download (27): NetFilter SDK 2 Demo Download|
What are the packets rejected by your Netfilter based firewall today ? How often this suspicious host try to connect to your box ? What are the most rejected domains ? Who is this strange host which scan your ports ?The responses are in the IPTables log analyzer.
|License: Freeware||Size: 317.44 KB||Download (20): IPTables log analyzer Download|
Ufw stands for Uncomplicated Firewall, and is program for managing a netfilter firewall. It provides a command line interface and aims to be uncomplicated and easy to use.
|License: Freeware||Size: 286.72 KB||Download (16): Ufw for Linux Download|
bastion-firewall is a Netfilter based firewall for Linux. It can generate graphical stats of all the rules traffic in the firewall with Rrdtool and it's integrated with the Snort Inline IPS. It's written in the bash and C programming languages.
|License: Freeware||Size: 92.16 KB||Download (18): bastion-firewall Download|
BastionX is a suite of bash scripts which provide a firewall system using netfilter on linux.Some of the supported features are flow control & QoS, local & WAN ip blacklists, dynamic trusted hosts, DMZ feature, auto detection of interfaces.
|License: Freeware||Size: 204.8 KB||Download (18): BastionX Download|
NetFilter SDK is a developer toolkit for transparent filtering the outgoing TCP connections on Windows. 'Transparent' means that no changes are needed in settings of the network applications. The toolkit is easy in use and suitable for creating various kinds of applications, which...
|License: Demo||Cost: $395.00 USD||Size: 2.78 MB||Download (75): NetFilterSDK Demo x86 Download|
Authfail is a program that goes with real time updating on FIFO file and adds IP into netfilter with DROP/REJECT policy in real time. The FIFO file is /dev/authfail. The rejected hosts database is located in /var/log/authfail. Each time a given host will do an "authentication failure" via...
|License: Freeware||Size: 23.55 KB||Download (71): Authfail Download|
Brcontrol is a set of patches to allow some interaction between a IDS and a firewall (currently snort and linux netfilter). It will help in the creation of aggresive honeypots or other advanced firewall and ids configurations. In can also work as bridge.. Get Brcontrol at SourceForge.net. Fast,...
|License: Freeware||Size: 15.36 KB||Download (74): Brcontrol Download|