< List of applications
List of applications/Security
Security
For detailed guides, see the main ArchWiki page, Security.
Network security
See also Wikipedia:Comparison of packet analyzers.
- airgeddon — Multi-use bash script to audit wireless networks
- Arpwatch — Tool that monitors ethernet activity and keeps a database of Ethernet/IP address pairings.
- bettercap — Swiss army knife for network attacks and monitoring.
- darkstat — Captures network traffic, calculates statistics about usage, and serves reports over HTTP.
- dsniff — Collection of tools for network auditing and penetration testing.
- EtherApe — Graphical network monitor for Unix modeled after etherman. Featuring link layer, IP and TCP modes, it displays network activity graphically. Hosts and links change in size with traffic. Color coded protocols display.
- Ettercap — Multipurpose Network sniffer/analyser/interceptor/logger.
- https://ettercap.github.io/ettercap/ || CLI: ettercap, GUI: ettercap-gtk
- GNOME Network Tools — GNOME interface for various networking tools.
- Honeyd — Tool that allows the user to set up and run multiple virtual hosts on a computer network.
- http://www.honeyd.org/ || honeydAUR
- hping — Command-line oriented TCP/IP packet assembler/analyzer.
- LinSSID — Graphical wireless scanner.
- Net Activity Viewer — Graphical network connections viewer, similar in functionality with Netstat.
- ngrep — grep-like utility that allows you to search for network packets on an interface.
- Sshguard — Daemon that protects SSH and other services against brute-force attacks, similar to Fail2ban.
- vnStat — Console-based network traffic monitor that keeps a log of network traffic for the selected interfaces.
Firewall management
See iptables#Front-ends.
Threat and vulnerability detection
- Metasploit Framework — An advanced open-source platform for developing, testing, and using exploit code.
- Tiger — Security tool that can be used both as a security audit and intrusion detection system.
File security
Anti malware
- Linux Malware Detect — Malware scanner designed around the threats faced in shared hosted environments.
Screen lockers
See also Session lock.
- Cinnamon Screensaver — Screen locker for the Cinnamon desktop.
- i3lock-blur — Fork of i3lock which can use your desktop with the blur effect applied as a background.
- sxlock — Fork of sflock with a few enhancements. Provides basic user feedback, uses PAM authentication, supports DPMS and RandR. Supports
sxlock.service
to lock the screen on suspend/hibernation. See the README for more information.
- XScreenSaver — Screen saver and locker for the X Window System.
Password auditing
Console
- gopass — Advanced console based password manager, supporting GnuPG and other backends.
- pass — Simple console-based password manager featuring flat text file organization and GnuPG encryption.
Graphical
- Bitwarden — Open source password manager with desktop, mobile, browser, and CLI versions. Cloud or self-hosted.
- Keysmith — OTP generation software by KDE.
- Passbook — Modern password manager for GNOME.
- Universal Password Manager — Allows you to store usernames, passwords, URLs and generic notes in an encrypted database protected by one master password.
Hash checkers
- RHash — Utility for verifying hash sums (SFV, CRC, etc). Supports lots of algorithms.
Encryption, signing, steganography
- Enigmail — A security extension to Mozilla Thunderbird and Seamonkey. It enables you to write and receive email messages signed and/or encrypted with the OpenPGP standard.
- KGpg — Simple interface for GnuPG, for KDE.
- passphrase2pgp — Reproducibly generate private key in OpenPGP/OpenSSH formats accroding to user input passphrase and optionally sign message in one go
Data-at-rest encryption
Privilege elevation
- sudo — Command to delegate the ability to run commands as root or another user while providing an audit trail.
This article is issued from Archlinux. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.