Insecurity
Tools:
Nikto.pl Web Scanner
nmap Network Scanner
Metasploit Framework
wfuzz Brute Force Web App
Wireshark Network Protocol Analyzer
Snort IDS
Nessus (vulnerability scanner)
Hydra Cracker Password
John the Ripper Cracker Password (Passive)
Linux Distros:
BackTrack Wireless Tools and others
Damn Vulnerable Linux
Others:
http://sectools.org/
http://www.milw0rm.com/
http://www.exploit-db.com/
http://www.securityfocus.com/
Firewalls
smothwall
ipcop
untangle
endian
m0n0wall
vyatta
pfsense
Other option: install any linux flavor + squid + iptables
Good option for windows users: http://personalfirewall.comodo.com/
Block Messenger (squid + iptables)
In Mexico i was installed a firewall and squid on a server the important options are:
squid.conf:
acl no_permitido dstdomain "/etc/squid/blocked.domains"
acl msn_mime req_mime_type -i ^application/x-msn-messenger$
acl msn_gw url_regex -i gateway.dll
http_access deny all msn_mime
http_access deny all msn_gw
blocked.domains:
.ebuddy.com
.messengerfx.com
.iloveim.com
.meebo.com
...
iptables:
iptables -I FORWARD -p tcp --dport 1863 -j REJECT
Virtualization Options
For personal or business infrastructure:
- VMware vSphere, VMware Server, VMware Player , VMware ESXi
- VirtualBox, VirtualBox Web Console
- Xen , Xen Live CD
- Qemu
- KVM
- Virtual PC
- Hyper-V
- Citrix
- Oracle VM
- Parallels
Others:
- Bochs
- Dosbox Run old DOS App or Games
Cloud computing Virtualization:
- Amazon Elastic Compute Cloud, Amazon Virtual Private Cloud
- ElasticHosts
useful options to separate processes and information:
Linux use Chroot
OpenSolaris use Zones
FreeBSD use Jails
NetBSD and OpenBSD use Sysjails
Maybe there are many other options to virtualization.
