Hardening Your Macintoshos x security, auditing, hardening, pen-testing, privacy & more...
updated 12.17.04
- network tools - firewalls - network intrusion detection systems - vpn's -
network tools:
Ethereal - network packet sniffer
www.ethereal.comNmap - "Network Mapper" is a free open source utility for network exploration or security auditing
www.insecure.org/nmap/ - http://www.macos.utah.edu/Documentation/macosx/security/nmap.htmlNmapFe 05b2 by Matthew Rothenberg - Cocoa frontend for nmap.
faktory.org/m/software/nmap/nmapfe-081.tgzNetcat - Netcat 1.10 is for opening raw connections to ports (TCP and UDP).
www.linville.org/resources/nc110.tgzCryptCat - An encrypted version of netcat. It uses AES encryption and a static key to encrypt all transactions.
osx binary - local copy and readmeConnect - Connect will allow socket connections using SOCKS4/5 and HTTP tunnel.
source - local binary MD5 = b5180cb789813fc958209c58b99039fa
firewalls:
Setting up firewall rules on Mac OS X by Daniel Cote -
www.novajo.ca/firewall.htmlOSX Personal Firewall gives false sense of security due to lack of ICMP and UDP protocol filtering.
OSX 10.3 Personal Firewall.txt
network intrusion detection systems:
Snort - Open Source Network Intrusion System
http://www.snort.orgHenWen - East to use front-end for snort
seiryu.home.comcast.net/henwen.html
vpn's:
Vapor - is a VPN like client it will help admins to tunnel thruw ssh to webservers, Appleshare, Server Admin, or any other ports. A great GUI to escape from the console mode!
www.afp548.com/Vapor/index.htmlIPSecuritas - will let you easily setup IPSec VPN connections to another host or network over the Internet, while securing your data by encryption and authentication. This way, you can easily and cheaply access your office network from any point of this world, always knowing your communication is safe and protected from others.
http://www.lobotomo.com/products/IPSecuritas/
