S3 evaluates vulnerabilities from the host operating system's perspective. S3 assesses file permissions, file ownership, network service configurations, account setup, program authenticity and common user related security weaknesses such as guessable passwords.
The Ballista Security Auditing System is a network security auditing tool on the lines of the ISS Scanner. It performs evaluations of intranets, web servers, firewalls and routers.
The ISS SAFESuite is a network security assesment tool that looks for vulnerabilities in Web sites, firewalls and the network security holes in the host operating system.
A proactive password checker that checks the password keyed in by the user against a sorted list of all the words that Crack will generate and given a set of input dictionaries. The user can key in a password if and only if that password cannot be cracked by a full run of crack.
A realtime intrusion detection system.
InterScan Viruswall is is a tool designed for protection against all types of computer viruses that can hitchhike on Email or FTP traffic across the Internet into your network. It intercepts viruses at the point where the Internet traffic enters your network i.e. the Internet gateway of your system.
Chkacct checks your home directory for some important "dot" files as well as looks throughout your entire home directory for world writable files.
A UNIX logs watcher and filter engine
Jai Sundar Balasubramaniyan
<balasujs@cs.purdue.edu>
Todd O'Boyle
<oboyle@cs.purdue.edu>
The opinions expressed are opinions of the researchers, and do not
represent any official recommendation or endorsement by COAST or Purdue
University.