1 Security

For detailed guides, see the main ParabolaWiki page, Security.

1.1 Network security

See also Wikipedia:Comparison of packet analyzers.

• Arpwatch — Tool that monitors ethernet activity and keeps a database of Ethernet/IP address pairings.

http://ee.lbl.gov/ || arpwatch

• bettercap — Swiss army knife for network attacks and monitoring.

https://www.bettercap.org/ || bettercap

• darkstat — Captures network traffic, calculates statistics about usage, and serves reports over HTTP.

https://unix4lyfe.org/darkstat/ || darkstat

• dsniff — Collection of tools for network auditing and penetration testing.

https://www.monkey.org/~dugsong/dsniff/ || dsniff

• EtherApe — Graphical network monitor for Unix modeled after etherman. Featuring link layer, IP and TCP modes, it displays network activity graphically. Hosts and links change in size with traffic. Color coded protocols display.

http://etherape.sourceforge.net/ || etherape

• Ettercap — Multipurpose Network sniffer/analyser/interceptor/logger.

https://ettercap.github.io/ettercap/ || CLI: ettercap, GUI: ettercap-gtk

• GNOME Network Tools — GNOME interface for various networking tools.

https://gitlab.gnome.org/GNOME/gnome-nettool || gnome-nettool

• hping — Command-line oriented TCP/IP packet assembler/analyzer.

http://hping.org/ || hping

• IPTraf — Console-based network monitoring utility.

https://sourceforge.net/projects/iptraf-ng/ || iptraf-ng

• jnettop — top-like console network traffic visualizer.

https://sourceforge.net/projects/jnettop/ || jnettop

• Kismet — 802.11 layer2 wireless network detector, sniffer, and intrusion detection system.

https://www.kismetwireless.net/ || kismet

• LinSSID — Graphical wireless scanner.

https://sourceforge.net/projects/linssid/ || linssid

• Net Activity Viewer — Graphical network connections viewer, similar in functionality with Netstat.

http://netactview.sourceforge.net/ || netactview

• netsniff-ng — High performance Linux network sniffer for packet inspection.

http://netsniff-ng.org/ || netsniff-ng

• ngrep — grep-like utility that allows you to search for network packets on an interface.

https://github.com/jpr5/ngrep || ngrep

• Nmap — Security scanner used to discover hosts and services on a computer network, thus creating a "map" of the network.

https://nmap.org/ || nmap

• Ntop — Network probe that shows network usage in a way similar to what top does for processes.

http://www.ntop.org/ || ntop

• pyNeighborhood — GTK+ based SMB/CIFS browsing utility.

https://launchpad.net/pyneighborhood || pyneighborhood

• Smb4K — Advanced network neighborhood browser and Samba share mounting utility for KDE.

http://smb4k.sourceforge.net/ || smb4k

• Sshguard — Daemon that protects SSH and other services against brute-force attacts, similar to Fail2ban.

https://www.sshguard.net/ || sshguard

• Tcpdump — Common console-based packet analyzer that allows the user to intercept and display TCP/IP and other packets being transmitted or received over a network.

http://www.tcpdump.org/ || tcpdump

• tcptrace — TCP dump file analysis tool.

http://tcptrace.org/ || tcptrace

• vnStat — Console-based network traffic monitor that keeps a log of network traffic for the selected interfaces.

http://humdi.net/vnstat/ || vnstat

• Wireshark — Network protocol analyzer that lets you capture and interactively browse the traffic running on a computer network.

https://www.wireshark.org/ || CLI: wireshark-cli, GTK+: wireshark-gtk, Qt: wireshark-qt

1.2 Firewall management

See iptables#Front-ends.

1.3 Threat and vulnerability detection

• Lynis — Security and system auditing tool to harden Unix/Linux systems.

https://cisofy.com/lynis/ || lynis

• Metasploit Framework — An advanced open-source platform for developing, testing, and using exploit code.

https://www.metasploit.com/ || metasploit

• OpenVAS — Framework of several services and tools offering a comprehensive and powerful vulnerability scanning and vulnerability management solution. FOSS Nessus fork.

http://www.openvas.org/ ||

openvas

1.4 File security

• AIDE — File and directory integrity checker.

http://aide.sourceforge.net/ || aide

• Logcheck — Simple utility which is designed to allow a system administrator to view the logfiles which are produced upon hosts under their control.

https://logcheck.alioth.debian.org/ || {{{4}}}

• Logwatch — Customizable log analysis system.

https://sourceforge.net/projects/logwatch/ || logwatch

• OpenDLP — OpenDLP is a free and open source, agent- and agentless-based, centrally-managed, massively distributable data loss prevention tool.

https://code.google.com/archive/p/opendlp/ || {{{4}}}

1.5 Anti malware

• ClamAV — Open source antivirus engine for detecting trojans, viruses, malware & other malicious threats.

http://www.clamav.net/ || clamav

• ClamTk — Graphical front-end for ClamAV using Perl and Gtk libraries. It is designed to be an easy-to-use, lightweight, on-demand antivirus scanner for Linux systems.

https://dave-theunsub.github.io/clamtk/ || clamtk

• Rootkit Hunter — Checks machines for the presence of rootkits and other unwanted tools.

http://rkhunter.sourceforge.net/ || rkhunter

1.6 Backup programs

See also Synchronization and backup programs#Incremental backups and Wikipedia:Comparison of backup software.

• Déjà Dup — Simple GTK+ backup program. It hides the complexity of doing backups the 'right way' (encrypted, off-site, and regular) and uses duplicity as the backend.

https://launchpad.net/deja-dup || deja-dup

• duplicity — Simple command-line utility which allows encrypted compressed incremental backup to nearly any storage.

http://www.nongnu.org/duplicity/ || duplicity

• restic — Fast, secure, efficient backup program that supports backing up to many cloud services.

https://restic.net/ || restic

1.7 Screen lockers

• Cinnamon Screensaver — Screen locker for the Cinnamon desktop.

https://github.com/linuxmint/cinnamon-screensaver || cinnamon-screensaver

• GNOME Screensaver — Screen locker for the GNOME Flashback desktop.

https://wiki.gnome.org/Projects/GnomeScreensaver || gnome-screensaver

• i3lock — A simple screen locker. Provides user feedback, uses PAM authentication, supports DPMS. The background can be set to an image or solid color.

https://i3wm.org/i3lock/ || i3lock

• Light-locker — A simple locker (forked from gnome-screensaver) that aims to have simple, sane, secure defaults and be well integrated with the desktop while not carrying any desktop-specific dependencies. It relies on LightDM for locking and unlocking your session via ConsoleKit/UPower or logind/systemd.

https://github.com/the-cavalry/light-locker || light-locker

• MATE Screensaver — Screensaver and locker for MATE Desktop Environment.

https://github.com/mate-desktop/mate-screensaver || mate-screensaver

• physlock — Screen and console locker.

https://github.com/muennich/physlock || physlock

• slock — Very simple and lightweight X screen locker. Offers only a black background when locked, there are no animations or text fields.

https://tools.suckless.org/slock/ || slock

• vlock — TTY locker. A mirror of the original vlock is available at github.

http://www.kbd-project.org || kbd

• xlockmore — Simple X11 screen lock with PAM support.

http://sillycycle.com/xlockmore.html || xlockmore

• XScreenSaver — Screen saver and locker for the X Window System.

https://www.jwz.org/xscreensaver/ || xscreensaver

• XSecureLock — X11 screen lock utility designed with the primary goal of security.

https://github.com/google/xsecurelock || xsecurelock

• xtrlock — Very lightweight X display locker. Keeps windows visible and displays lock icon instead of mouse cursor. Typing password followed by enter unlocks the screen.

https://packages.debian.org/sid/xtrlock || xtrlock

1.8 Password managers

1.8.1 Console

• gopass — Advanced console based password manager, supporting GnuPG and other backends.

https://github.com/justwatchcom/gopass || gopass

• pass — Simple console based password manager, using GnuPG encryption.

https://www.passwordstore.org/ || pass

• LastPass — Hosted password manager.

https://www.lastpass.com/ || lastpass-cli

1.8.2 Graphical

• GNOME Password Safe — Password manager for GNOME which makes use of the KeePass v.4 format.

https://gitlab.gnome.org/World/PasswordSafe || gnome-passwordsafe

• KeePass Password Safe — Mono-based password manager, which helps you to manage your passwords in a secure way.

https://keepass.info/ || keepass

• KeePassX — Qt-based password manager. Compatible with KeePass v.1.x and KeePass v.2.x.

https://www.keepassx.org/ || version 1: keepassx, version 2: keepassx2

• KeePassXC — Community fork of KeePassX with more active development. Compatible with KeePass v.1.x (import only) and KeePass v.2.x.

https://keepassxc.org/ || keepassxc

• KWalletManager — Tool to manage the passwords on your system. By using the KDE wallet subsystem it not only allows you to keep your own secrets but also to access and manage the passwords of every application that integrates with the wallet.

https://www.kde.org/applications/system/kwalletmanager/ || kwalletmanager

• QtPass — GUI for pass, the standard unix password manager.

https://qtpass.org/ || qtpass

• Seahorse — GNOME application for managing encryption keys and passwords in the GNOME Keyring.

https://wiki.gnome.org/Apps/Seahorse || seahorse

1.9 Cryptography

1.9.1 Hash checkers

• cfv — Tiny utility to both test and create checksum files, support .sfv, .csv, .crc, .md5, md5sum, sha1sum, .torrent, par, and .par2 files.

http://cfv.sourceforge.net/ || cfv

• hashdeep — A cross-platform tools to computer hashes, or message digests, for any number of files

http://md5deep.sourceforge.net/ || hashdeep

• RHash — Utility for verifying hash sums (SFV, CRC, etc). Supports lots of algorithms.

http://rhash.anz.ru/ || rhash

• Parchive — Utility which creates and uses PAR2 files to detect damage in data files and repair them if necessary.

https://github.com/Parchive/par2cmdline || par2cmdline

1.9.2 Encryption, signing, steganography

• ccrypt — A command-line utility for encrypting and decrypting files and streams.

http://ccrypt.sourceforge.net/ || ccrypt

• Enigmail — A security extension to Mozilla Thunderbird and Seamonkey. It enables you to write and receive email messages signed and/or encrypted with the OpenPGP standard.

https://enigmail.net || thunderbird-extension-enigmail

• GnuPG — The GNU project's complete and free implementation of the OpenPGP standard as defined by RFC4880. Free and Open Source replacement of PGP, mostly used for digital signing of packages.

https://gnupg.org/ || gnupg

• GPG-Crypter — Graphical front-end to GnuPG(GPG) using the GTK3 toolkit and GPGME library.

https://sourceforge.net/projects/gpg-crypter/ || gpg-crypter

• gzsteg — Utility that can hide data in gzip compressed files

http://www.nic.funet.fi/pub/crypt/steganography/ || {{{4}}}

• Keybase — Key directory mapping social media identities, with cross platform encrypted chat, cloud storage, and git repositories.

https://keybase.io/ || keybase

• KGpg — Simple interface for GnuPG, for KDE.

https://www.kde.org/applications/utilities/kgpg/ || kgpg

• Kleopatra — Certificate Manager and Unified Crypto GUI for KDE. It supports managing X.509 and OpenPGP certificates in the GpgSM keybox and retrieving certificates from LDAP servers.

https://www.kde.org/applications/utilities/kleopatra/ || kleopatra

• minisign — Simple program that only inplements key signing

https://github.com/jedisct1/minisign || minisign

• Seahorse — GNOME application for managing encryption keys and passwords in the GNOME Keyring.

https://wiki.gnome.org/Apps/Seahorse || seahorse

• steghide — A steganography utility that is able to hide data in various kinds of image and audio files.

http://steghide.sourceforge.net || steghide

1.9.3 Disk encryption

See Disk encryption.