Projects

Snort

Snort® is an open source network intrusion prevention and detection system using a flexible rule-driven language, which combines the benefits of signature, protocol and anomaly based inspection methods. With millions of downloads to date, Snort is the most widely deployed intrusion detection and ... [More] prevention technology worldwide and has become the de facto standard for the industry. [Less]

Suricata IDS/IPS

Suricata is an open source Intrusion Detection and Prevention (IDS/IPS) engine. Suricata is developed by the Open Information Security Foundation and its supporting vendors. The engine is multi-threaded, has native IPv6 support, file extraction capabilities and many more features. It's capable ... [More] of loading existing Snort rules and signatures and supports many frontends through Barnyard2. [Less]

netsniff-ng

netsniff-ng is is a free, performant Linux network analyzer and networking toolkit. The gain of performance is reached by zero-copy mechanisms, so that the kernel does not need to copy packets from kernelspace to userspace and vice versa. netsniff-ng consists of much more than only a network ... [More] analyzer. Next to the zero-copy sniffer itself, further tools like trafgen, a powerful zero-copy network packet generator, or ifpps, a tool that provides top-like kernel networking statistics, and curvetun, a lightweight curve25519-based multiuser IP tunnel, are being shipped. [Less]

conexus

A generalized C++ I/O library that includes support for * BSD sockets (IPv4, IPv6, TCP, UDP) * OpenSSL secure streams * NSPR sockets * NSS secure streams * Kernel message queues * Files and pipes * Serial/tty * Gtkmm widgets * et. al.

Flowgrind

Flowgrind is a tool similar to iperf, netperf to measure throughput and other metrics for TCP. It features some unique characteristics which are of use when exploring the idiosyncrasies of wireless mesh networks.

tcpproxy

tcpproxy is a simple tcp connection proxy which combines the features of rinetd and 6tunnel. tcpproxy supports IPv4 and IPv6 and also supports connections from IPv6 to IPv4 endpoints and vice versa.

netsend

Netsend considered at a low-level isn't really more then a simple IO wrapper. Netsend transmit and receive files just like every other filetransfer application. The difference is HOW netsend utilise the Operating System - nor the lowest common denominator of available functionality (e.g. ... [More] portability) is the main goal. Intention is to crush the last quantum of the Linux Network Stack to gain maximum network performance. [Less]

Flow Streaming Framework

Flow is a lightweight streaming framework for data and objects. It uses the GObject model for object orientation, and exposes simple and extensible APIs for stream I/O and network interaction.

netperf

Netperf is a benchmark that can be use to measure various aspect of networking performance. The primary foci are bulk (aka unidirectional) data transfer and request/response performance using either TCP or UDP and the Berkeley Sockets interface. As of this writing, the tests available either ... [More] unconditionally or conditionally include: TCP and UDP unidirectional transfer and request/response over IPv4 and IPv6 using the Sockets interface. TCP and UDP unidirectional transfer and request/response over IPv4 using the XTI interface. Link-level unidirectional transfer and request/response using the DLPI interface. Unix domain sockets SCTP unidirectional transfer and request/response over IPv4 and IPv6 using the sockets interface. [Less]

tcpjunk

Tcpjunk is a general TCP protocols testing and hacking utility. Main features:Supports IPv4/IPv6 Automatically send/receive data according to predefined session setup Client/Server mode Supports SSL Dynamic data insertion and manipulation using tags Traffic generation GUI mode News:2.8.21 Fixed ... [More] issue with initial session timeout Added long options. Help and man page updated. 2.8.11 2.8 is out of beta Many more GUI updates and fixes Many other bug fixes 2.8.05 BETA Many GUI improvements Removed UDP support (for now) Bug fixes Screenshot (in GUI mode): Requirements:Updated GNU/Linux based system GTK+ 2 Toolkit OpenSSL Toolkit GtkSourceView 2 pkgconfig utility History:2.8.01 BETA Added IPv6 support Added UDP Client support (UDP Server support in progress) Added character array tag Added option for reusing random source IP's for multiple sessions (-N) Manual page updated Many bug fixes 2.7.01 Added daemon mode (-a) Fixed sequential files (-e) flaw in server mode Fixed version number 2.6.92 Fixed crash when using -f/-e options with binary files Fixed memory leaks when using multiple sections Minor GUI changes 2.6.90 Redesigned encode tag 2.6.87 Added -e option, sequential files from current directory bug fixes 2.6.86 Fixed crash in CLI (in some distributions). Added encode tag. 2.6.80 Added multiple session tabs Undo functionality IP options -P and -R fixed (broken since 2.660) Added "last data" option to fuzz and count tags Many other fixes 2.672 Fixed crash related to tags in binary session data Fixed count tag in server mode Added verbosity to random file option Fixed tag parsing order issue Other minor fixes 2.670 BETA Update: 2.670 still has some issues, flagged as beta (latest stable ver is 2.649). Bulletproofed tag system Added new 'counter' tag Added hexdump feature Misc bug fixes. 2.661 BETA Fixed bug in 'system' tag insertion Minor layout and highlight improvements 2.660 BETA Added manual page Added syntax highlighting Removed session file size limit Added source port option Improved tags functionality Many bug fixes 2.649 Fixed crash in GUI/Verbose mode 2.648 Added option to use random session files from current directory (-f) Added verbosity to CLI (-v) / GUI mode [Less]