Bandwidth Monitor Next Generation (BWM-NG) is a small and simple console-based live network and disk io bandwidth monitor for Linux, BSD, Solaris, Mac OS X and others and is licensed under GPL2. It shows the input and output bandwidth used by each interfaces as well as total input and output bandwidth of all interfaces installed in your machine. BWM-NG supports different output methods like curses, plain, csv and html. BWM-NG is not limited in the number of interfaces in your machine, it can handle new interfaces dynamically while its running or hide those which are not up.

Features

• supports /proc/net/dev, netstat, getifaddr, sysctl, kstat, /proc/diskstats /proc/partitions, IOKit, devstat and libstatgrab
• unlimited number of interfaces/devices supported
• interfaces/devices are added or removed dynamically from list
• white-/blacklist of interfaces/devices
• output of KB/s, Kb/s, packets, errors, average, max and total sum
• output in curses, plain console, CSV or HTML
• configfile

Download the current version: bwm-ng-0.6.tar.gz (changelog)

Popularity: 3% [?]

This tool is for Linux System Administrators like me who are maintaining several Linux boxes and getting tired of repeating the same commands to all the servers doing the same tasks. ClusterSSH controls a number of xterm windows via a single graphical console window to allow commands to be interactively run on multiple servers over an ssh connection. Cluster SSH opens terminal windows with connections to specified hosts and an administration console. Any text typed into the administration console is replicated to all other connected and active windows. This tool is intended for cluster administration where the same configuration or commands must be run on each node within the cluster.

You may download Cluster SSH here.

Popularity: 2% [?]

ISIC is a suite of utilities to exercise the stability of an IP Stack and its component stacks (TCP, UDP, ICMP et. al.) It generates piles of pseudo random packets of the target protocol. The packets be given tendancies to conform to. Ie 50% of the packets generated can have IP Options. 25% of the packets can be IP fragments… But the percentages are arbitrary and most of the packet fields have a configurable tendancy.

The packets are then sent against the target machine to either penetrate its firewall rules or find bugs in the IP stack.

ISIC also contains a utility generate raw ether frames to examine hardware implementations.

WARNING: ISIC may break shit, melt your network, knock out your firewall, or singe the fur off your cat

Popularity: 2% [?]

If you are a System Administrator using Squid Proxy Server and you need a tool for securing web acccess in your company, then use the “whitetrash” plugin for Squid.

Whitelisting is a technique that makes it difficult for malware to use HTTP and SSL.

For example, an attacker sends you a malware in the form of a MSWord document attached to an email. You open the attached MSWord document and then the malware executes. The malware will then use HTTP to download tools from the attacker’s domain and use these tools to damage your PC. With a whitelist, all of these actions will be blocked because the attacker’s domain is not in the whitelist.

The Goal

The goal of Whitetrash is to provide a user-friendly and sysadmin-friendly proxy that makes it significantly harder for malware to use HTTP and SSL for:

• initial compromise;
• data exfiltration;
• command and control.

Whitetrash features:

• Provides whitelisting for HTTP and SSL that is good for both users and sysadmins, but defends against malware and browser exploits.
• A HTML rendered whitelist report that can be viewed by all users. Can also be used to generate static whitelists for popular domains.
• Fast: no noticeable impact on users browsing urls already in the whitelist, and adding a new URL is very quick.
• Secure: As this is a security product, great care has been taken to sanitise input, flow control etc. so that the whitelist cannot be easily circumvented or exploited.

• Users can delete their own whitelist entries (optional). Admins can delete any whitelist entry.

• A HTML report that lists all domains requested but not whitelisted - good for tracking down malware/adware and generating static blacklists.
• Configurable authentication: any sort of authentication can be used. Squid provides plugins for NTLM, basic, and digest but has an extensible interface for other authentication schemes.
• NEW: A CAPTCHA system has been implemented to prevent malware adding itself to the whitelist. CAPTCHA can be enabled for HTTP, SSL, or both. This is available in the source tree and will be included in the next release.

Popularity: 4% [?]

Transmission Control Protocol/Internet Protocol or simply TCP/IP is the communication “language” or “protocol” used by the computers and devices connected to the Internet to communicate to each other.

When you connect to the Internet, your internet browser uses TCP/IP to communicate with a web server and a web server uses TCP/IP to send the web page to your browser.

Your favorite e-mail client uses TCP/IP to connect to the Internet to send and receive e-mails.

The IP address of your computer and your domain name (www.reodica.org) are part of the standard TCP/IP protocol.

Behind the TCP/IP standard are different protocols that handle data communication, they are:

a.) TCP (Transmission Control Protocol) communication between applications
b.) UDP (User Datagram Protocol) simple communication between applications
c.) IP (Internet Protocol) communication between computers
d.) ICMP (Internet Control Message Protocol) for errors and statistics
e.) DHCP (Dynamic Host Configuration Protocol) for dynamic addressing

Transmission Control Protocol is the reliable transport protocol within the TCP/IP protocol suite and uses a “fixed connection” (and requires handshake before a session can start) to ensure that all data arrive accurately and 100% intact at the other end. TCP is mostly used as communication protocol between applications.

Internet Protocol is a “connection-less” communication protocol responsible for the communication between computers in a network. IP is responsible for routing each packet to its destination.

In layman’s term TCP is used by your web-browsers (e.g. firefox, Internet Explorer) and web-server-software (e.g. Apache) while IP is used by your computer and the computer where the web-server-software is running.

Popularity: 1% [?]

Read the rest of this entry »

Popularity: 2% [?]