Computers: Software: Security

Security

General
- FTP site for much security related software
- Security Hotlist from Gene Spafford's hotlist
- Security and Encryption Resources
- Security-Focus.com
- X-Force Vulnerability and Threat Database
Center for Internet Security
CERT - Computer Emergency Response Team
CIAC - Computer Incident Advisory Capability
- Security patches
- Listing of anonymous ftp sites for security patches
- Patch Manager software
COAST - Computer Operations, Audit, and Security Tools
COPS - Computer Oracle and Password System
Crack, a password cracking program
- Z-Crack, a few more password-crackers
CSTC - Computer Security Technology Center
Distributed.net, a group using distributed processing to crack keys
E-mail security
- Tricryption
FIRST - Forum of Incident Response and Security Teams
Hacking Pages
- Cult of the Dead Cow
- FETAG Software's Hacking Page
- Hackers Home Page, supplier of hacking supplies and information
Hoaxes
- Chain Letters
- Computer Virus Myths
ISS - Internet Security Scanner
Last Stage of Delirium security experts
L0pht Heavy Industries, Unix and NT security experts
Linux security issues
Magazines
- 2600 Magazine, the Hacker Quarterly
- Information Security
Mailing Lists
- BugTraq
NASIRC - NASA Automated Systems Incident Response Capability
NIPC - National Infrastructure Protection Center
The Nessus Project, a remote security scanner
npasswd, a replacement passwd program (ftp)
Papers
- White Papers from Lance Spitzner
- Security Problems in the TCP/IP Protocol Suite (old)
- A Weakness in the 4.2BSD Unix TCP/IP Software (1985)
PGP - Pretty Good Privacy
- EFH PGP Workshop
- FAQ and other documentation
- MIT distribution site
- PGP software by Michael Paul Johnson
- Newsgroup: alt.security.pgp
SATAN - Security Administrator Tool for Analyzing Networks
- Courtney, a tool to monitor attacks by SATAN
RSA Data Security
Sam Spade, a site with numerous on-line scanning tools
Securelib, a security tool for RPC
Solaris Security FAQ
Specific Problems
- Ping O' Death
- The Ultimate Sendmail Hole List
- SYN Flooding
SSh - Secure Shell
Securify, including the successful Packet Storm web site
TAMU, a UNIX auditing tool
Tripwire, a UNIX filesystem integrity checker (obsolete freeware version)
Viruses
- Antivirus Research Center from Symantec
- Data Fellows
- Dr. Solomon's Anti-Virus
- Sophos Anti-Virus
- Virus Bulletin
- Virus Encyclopedia
- Virus Research Unit from the University of Tampere
- Virus Test Center from the University of Hamburg
  - FTP Archive
- Newsgroup: comp.virus
Windows Tools
- SCUA Supervisor, from a Brazilian company
- ShieldsUP!, an on-line tool for checking the networking security of a system
Writing Safe Setuid Programs
WWW Security
- Security Concerns on the Web
- World Wide Web Security FAQ
- A few noted security holes
Newsgroup: comp.security.announce

pls@@astro.caltech.edu

Last modified: Tue Mar 13 17:48:19 PST 2001