mod_security 
Description: Mod_security is an Apache module whose purpose is to protect vulnerable applications and reject human or automated attacks. It is an open source intrusion detection and prevention system for Apache. In addition to request filtering, it also creates Web application audit logs. Requests are filtered using regular expressions. Some of the things possible are:
* Apply filters against any part of the request (URI, headers, either GET or POST)
* Apply filters against individual parameters
* Reject SQL injection attacks
* Reject Cross site scripting attacks
With few general rules mod_security can protect from both known and future vulnerabilities.
Added on: 23-Feb-2003 | Downloads: 529
Homepage | Details
CVEBrowser
Description: What is (CVE®) web browser?.
According to the CVE site:
"Common Vulnerabilities and Exposures (CVE®) is: A list of standardized names for vulnerabilities and other
information security exposures ? CVE aims to standardize the names for all publicly known vulnerabilities and
security exposures."
The CVEbrowser is an web application aimed to provide search capabilities to the
CVE database available for free.
Why another CVE database browser?
There are several advantages to have the CVE database stored on your internal network:
* Faster local access to vulnerability data dictionary.
* The ability to perform customized searchs on the CVE database data.
* Integration with your custom security product and the database information.
* Runs on any platform that supports Java Servlets and JDBC
* You have the code, you can customize it!.
* Written in Java, so you can integrate it with your current servlet environment.
* CVE / CAN data files are automatically downloaded and imported for you.
Added on: 12-Jul-2003 | Downloads: 501
Homepage | Details
OpenSIMS
Description: OpenSIMS (Open Source Security Infrastructure Management System) is an open source project sponsored by Symbiot, Inc. which provides a way for tying together the open source tools used for security management into a common infrastructure. It leads toward having different networks use risk metrics to collaborate on attacker profiling and remediation.
In contrast to other projects, we wanted to build the server-side code to be platform-independent and highly extensible. Java and XML provide that, working in the context of many excellent projects at Apache. Flash and other real-time animation GUI technologies extend a new kind of analysis and visualization to enterprise network security.
Added on: 02-Aug-2004 | Downloads: 430
Homepage | Details
WiKID Strong Authentication System
Description: Hate passwords? The WiKID Strong Authentication System is a key-based two-factor authentication system. We built WiKID to be a flexible, extensible, and secure alternative to tokens or passwords. Application support for Java, Windows, PHP, SugarCRM, etc
Added on: 22-Aug-2006 | Downloads: 261
Homepage | Details
