Projects tagged ‘cryptography’ and ‘linux’

mcrypt is a program for encrypting files or streams. It is intended to be a replacement for the old UNIX crypt. It uses well-known and well-tested algorithms like BLOWFISH, AES, ARCFOUR, CAST-128, and ... [More] more in several modes of operation. It also has a compatibility mode with the old UNIX crypt program and the des program found in Solaris. [Less]

John the Ripper is a fast password cracker, currently available for many flavors of Unix (11 are officially supported, not counting different architectures), Windows, DOS, BeOS, and OpenVMS. Its ... [More] primary purpose is to detect weak Unix passwords. Besides several crypt(3) password hash types most commonly found on various Unix flavors, supported out of the box are Kerberos AFS and Windows NT/2000/XP/2003 LM hashes, plus several more with contributed patches. [Less]

Aircrack-ng is an 802.11 WEP and WPA-PSK keys cracking program that can recover keys once enough data packets have been captured. It implements the standard FMS attack along with some optimizations ... [More] like KoreK attacks, thus making the attack much faster compared to other WEP cracking tools. In fact aircrack is a set of tools for auditing wireless networks. [Less]

Openswan is an Open Source implementation of IPsec for the Linux operating system. Is it a code fork of the FreeS/WAN project, started by a few of the developers who were growing frustrated with the politics surrounding the FreeS/WAN project.

strongSwan is an OpenSource IPsec implementation for the Linux operating system. It is based on the discontinued FreeS/WAN project and the X.509 patch which we developed over the last three years. It ... [More] features IKEv1 and IKEv2 keying capabilities and targets Linux 2.6 native IPsec. [Less]

Anytun is an implementation of the secure anycast tunneling protocol. It uses an easy openvpn style interface and makes it possible to build redundant vpn clusters with load balancing between servers. ... [More] VPN Servers share a single IP address. Adding and removing VPN Servers is done by the routing protocol, so no client changes have to be made when additional VPN Servers are added or removed. It is possible to realise global load balancing based on shortest BGP routes, by simply announcing the address space of the tunnel servers at multiple locations. [Less]

Openwall GNU/*/Linux (or Owl for short) is a security-enhanced server platform. The primary approaches to security are proactive source code review, privilege reduction, privilege separation, careful ... [More] selection of third-party software, safe defaults, "hardening" to reduce the likelihood of successful exploitation of security flaws, and the uses of "strong" cryptography. Also available are policy enforcement and integrity checking capabilities. Besides the security enhancements, other key properties of Owl include the ability to rebuild the entire system from source with one simple command ("make buildworld"), support for software packages found in or developed for Red Hat's and compatible Linux distributions, and support for multiple architectures (currently x86, x86-64, SPARC, and Alpha). [Less]

pam_passwdqc is a simple password strength checking module for PAM-aware password changing programs, such as passwd(1). In addition to checking regular passwords, it offers support for passphrases ... [More] and can provide randomly generated ones. All features are optional and can be (re-)configured without rebuilding. The package additionally includes libpasswdqc (a password/passphrase strength checking library), pwqcheck (a standalone password/passphrase strength checking program), and pwqgen (a standalone random passphrase generator program). [Less]

The Mandos system allows computers to have encrypted root file systems and at the same time be capable of remote and/or unattended reboots. The computers run a small client program in the initial ... [More] RAM disk environment which will communicate with a server over a network. All network communication is encrypted using TLS. The clients are identified by the server using an OpenPGP key; each client has one unique to it. The server sends the clients an encrypted password. The encrypted password is decrypted by the clients using the same OpenPGP key, and the password is then used to unlock the root file system, whereupon the computers can continue booting normally. [Less]

µAnytun is a tiny implementation of SATP. Unlike Anytun which is a full featured mplementation µAnytun has no support for multiple connections or synchronisation. It is a small single threaded ... [More] implementation intended to act as a client on small platforms. [Less]