Security of systems typically require authentication systems such as login name and password, access control lists for controlling who has access to each resource, auditing to record a trail of who accessed what and when in a log file, certificates which are electronic keys used to connect client systems to servers, firewalls to restrict access into trusted networks, virus scanners, email filters, virtual private networks, secure tunnels, trusted systems, and more. - Neville Richter

Security

Anti-Virus, Anti-Spyware and Anti-Spam

• Clam - Free open source Anti-Virus software (ClamWin for Windows, ClamXav for MacOSX, ClamAV for Linux) http://www.clamwin.com/, http://www.clamxav.com/, http://www.clamav.com/ (GPL)
• Avast - Anti-virus software Home Edition (Windows, MacOSX, Linux) http://www.avast.com/ (Free)
• Avira - Anti-virus software Personal Use (Windows, Linux) http://www.free-av.com/ (Free)
• AVG - Anti-virus software Free Edition (Windows, MacOSX) http://free.grisoft.com/doc/1 (Free)
• NoScript - Firefox add-on that prevents Javascript from running (Windows, MacOSX, Linux) http://noscript.net/ (GPL)
• Spybot - Search and destroy spyware (Windows) http://www.spybot.net/en/ (Free)
• Winpooch - Anti spyware and anti trojan watchdog (Windows) http://winpooch.free.fr/page/home.php?lang=en (GPL)
• SpamPal - Mail classification program that can help separate your spam from your mail (Windows) http://www.spampal.org/ (Free)
• SpamAssassin - Powerful Open Source Spam Filter (MacOSX, Linux) http://spamassassin.apache.org/ (Free, Apache License)
• MailScanner - Free Anti-Virus and Anti-Spam Filter (Linux) http://www.mailscanner.info/ (GPL)

Virus Information Web Sites

• NVD - National Vulnerability Database - US National Institute of Standards and Technology http://nvd.nist.gov/
• CIAC - Computer Incident Advisory Capability - US Department of Energy http://www.ciac.org/ciac/
• CERT - Computer Virus Resources http://www.cert.org/other_sources/viruses.html
• F-Secure - Virus Statistics http://www.f-secure.com/virus-info/statistics/
• McAfee - Threat Center http://www.drsolomon.com/us/threat_center/default.asp
• Microsoft Security Response Center - Best Practices and Tools http://www.microsoft.com/security/msrc/default.mspx
• Norton - Threat Explorer from Symantec http://www.symantec.com/norton/security_response/threatexplorer/index.jsp
• TrendMicro - Virus Map http://wtc.trendmicro.com/wtc/default.asp



Firewalls

• CoreForce - Personal Firewall (Windows) http://force.coresecurity.com/ (Apache License)
• ZoneAlarm - Free Personal Firewall (Windows) http://www.zonealarm.com (Free)
• ThreatFire - Free Firewall for Personal and Business use (Windows) http://www.threatfire.com/download/ (Free)
• iptables - controls network packet filtering code in Linux kernel for firewalls and IP masquerading (Linux) http://www.netfilter.org/ (GPL)
• FWBuilder - Firewall Builder requires NetFilter (Linux) http://www.fwbuilder.org (GPL)
• Shorewall - High-level tool for configuring Netfilter (Linux) http://www.shorewall.net/ (GPL)
• SmoothWall - Linux distribution that converts a redundant PC into a hardened internet firewall device (Linux) http://www.smoothwall.org/ (GPL)
• NuFW - An Authenticating Firewall to authenticate connections through your gateway requires Netfilter (Linux) http://www.nufw.org (GPL)



Computer Forensics

• TestDisk - data recovery software to recover lost partitions [English, Spanish, more] (Windows, MacOSX, Linux) http://www.cgsecurity.org/wiki/TestDisk (GPL)
• PhotoRec - recover lost files including video, pictures and documents (Windows, MacOSX, Linux) http://www.cgsecurity.org/wiki/PhotoRec (GPL)
• Autopsy - Forensic browser requires Sleuthkit (Linux) http://www.sleuthkit.org/autopsy/ (Free)
• Sleuthkit - Collection of command line tools to investigate a computer (Linux) http://www.sleuthkit.org/sleuthkit/index.php (Free)



Security Diagnostics

• Wireshark - Windows network diagnostic tool to view the contents of network packets replaces ethereal (Windows, Linux) http://www.wireshark.org (GPL)
• Nmap - Nmap Security Port Scanner (Windows, MacOSX, Linux) http://insecure.org/ (GPL)
• WinPcap - windows pcap link layer network access (Windows) http://www.winpcap.org/ (free Netgroup License)
• Analyzer - configurable Network Analyzer for Win32 requires WinPcap (Windows) http://analyzer.polito.it/ (free Netgroup License)
• Nessus - Network vulnerability scanner (Windows, MacOSX, Linux) http://www.nessus.org/ (Free for personal use, Nessus Software License)

Security Documents

• LDP Security-HOWTO - procedures and software to secure system http://os.cqu.edu.au/LDP/HOWTO/Security-HOWTO.html
• LDP Security-Quickstart-Redhat-HOWTO - Linux security issues http://os.cqu.edu.au/LDP/HOWTO/Security-Quickstart-Redhat-HOWTO.html
• IETF RFC 2196 Site Security Handbook - Fraser B. 1997 http://os.cqu.edu.au/pub/rfc/rfc2000/rfc2196.txt
• IETF RFC 2504 User's Security Handbook - Guttman E et al 1999 http://os.cqu.edu.au/pub/rfc/rfc2500/rfc2504.txt
• FreeBSD Documentation Handbook - Chapter on Security http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/security.htm
• W3C Web Security FAQ - security of web servers and browsers http://www.w3.org/Security/Faq/www-security-faq.html
• Special Pub 800-12 - An Introduction to Computer Security: The NIST Handbook http://csrc.nist.gov/publications/nistpubs/800-12/
• Gateway Certification Guide http://www.dsd.gov.au/library/infosec/gateway.html
• How to Write Secure Code http://www.shmoo.com/securecode/

  More Security Tools and Security Web Sites

• gpg4win - A graphical installer with WinPT and GnuPG Privacy Guard (Windows) http://www.stud.uni-hannover.de/~twoaday/download.html (GPL)
• Metasploit Framework - development platform for creating security tools and exploits written in ruby (Windows, Linux) http://framework.metasploit.com/msf/ (Metasploit Framework License)
• Top 100 Network Security Tools - for Windows, MacOSX and Linux http://sectools.org
• Open Source Software - security for Windows, MacOSX and Linux http://www.opensourcelist.org/tags/security
• FSF/UNESCO - Free Software Directory on security http://directory.fsf.org/security/
• US-CERT - United States Computer Emergency Readiness Team on Cyber Security Tips http://www.us-cert.gov/cas/tips/
• SecurityFocus - a comprehensive and trusted source of security information http://www.securityfocus.com/
• SANS Institute - a source for information security training, certification & research http://www.sans.org/
• AusCERT - Australian Computer Emergency Response Team http://www.auscert.org.au/

Backup and Synchronization

• DirSync Pro - small powerful utility for file and folder synchronization - requires java (Windows, MacOSX, Linux) http://directorysync.sourceforge.net/ (GPL)
• FreeFileSync - fast and easy configurable sync operations between two folders (Windows, Linux) http://sourceforge.net/projects/freefilesync/ (GPL)
• Kdiff3 - compares or merges two or three text input files or directories (Windows, MacOSX, Linux) http://kdiff3.sourceforge.net/ (GPL)
• Synkron - folder synchronisation that allows you to configure your synchronisations in detail (Windows, MacOSX, Linux) http://synkron.sourceforge.net/ (GPL)
• Abakt - free backup tool with filtering and command line options (Windows) http://www.xs4all.nl/~edienske/abakt/ (GPL)

  Ethics

• Ethics Resource Center http://www.ethics.org
• Australian Computer Society - Code of Ethics http://www.acs.org.au/index.cfm?action=show&conID=coe
• SAGE - Code of Ethics http://www.sage-au.org.au/ethics.html
• IEEE - Code of Ethics http://www.ieee.org/portal/pages/iportals/aboutus/ethics/code.html
• ACM - Code of Ethics and Professional Conduct http://www.acm.org/constitution/code.html

Freeware Copyright 2007-2009 GNU General Public License
OSWINS DVD was built by Neville Richter - http://os.cqu.edu.au/oswinsdvd