Bandwidth and web space provided courtesy of
Netikus.Net ltd.
Netikus.Net ltd is not responsible or
associated with the contents of this page.
Software
|
This is a content filter that can be used to prevent the spreading of virus and other malcontent through email. It is used as an event sink for Microsoft IIS-SMTP Service (which is also used by MS-Exchange 2000 or higher), and is designed to run under the Component Service (formerly MTS) as a COM+ application.
IDRFilter main features are: attachment filtering based on allowed type policy; conversion of HTML/RTF email to plain text; ability to add a disclaimer to all outgoing message; ability to recognize and inspect nested MIME message; customizable notifications; low privilege operation; and more...
IDRSMTPProxy is an SMTP proxy server that can be used to reject unwanted mail or SPAM/UCE at the SMTP conversation level (that is before the mail is queued). With IDRSMTPProxy, SPAM messages are never accepted. They're always rejected back to the sender queue, thus saving your MTA resources. The proxy would also attempt to exhaust the resource of the sending machine by slowing down it's response to those blacklisted machines (this idea is adopted from OpenBSD 3.3 spamd ).
Some features of this proxy are: message rejection based on inbound/ outbound sender, recipient, or IP address; RBL database query; and customizable rejection message for each rule. It is also runs as a Windows Service, which enables low privilege operation and auto-restart feature.
This is another event sink for MS SMTP Server that can do one of IDRSMTPProxy functionality: To reject message based on blacklisted recipient at the SMTP conversation level. If a recipient address is not in blacklist, the filter will then look it up in Active Directory to ensure that it does exist before allowing the delivery.
If you're using MS SMTP Server (or Exchange 2000) and you only want to prevent unnecessary NDR for non-existant users, then you can use this efficient filter instead of IDRSMTPProxy.
This is a web filter for Microsoft ISA Server 2000 Web Proxy Service that can be used to control the usage of Internet bandwidth. The tool achieve its purpose by providing bandwidth usage accounting, and a way to prevent downloads of predefined file types. A command line tool that can be scheduled to reset the accounting information from database is also provided to ease weekly/monthly maintenance.
The distribution also includes an ISA application filter that enables administrator to selectively allow access to FTP/HTTP/HTTPS protocol from ISA Firewall & Secure NAT clients -- rather than denying/ allowing them all using "HTTP Filter Redirector" that comes with ISA Server.
This tool also has mirror on ISATools.org.
This is a set of command line tool that can be used to remotely install security updates & Service Packs to Windows NT machines, based on the output of Microsoft Baseline Security Analyzer (mbsacli.exe /hf -o tab).
It has small requirements on the target computers, selectable remote deployment method, and can automatically download missing hotfixes from MS site as necessary.
You can also use some of it's component to execute any command at remote NT machines. Some of it advantages over other similar tool are: it doesn't require the presence of ADMIN$ share at the target; it doesn't pass your password in clear-text across the network; and it is capable of processing multiple target at once.
This is a win32 tool that uses modem to check PABX CO/trunk lines availability. It support database lookup and logging, and is design to run both in interactive or unattended mode. Although by default it is tailored to work (and have been tested too) with Avaya PABX, it should be easy to adapt it with other types of phone switches. Example of usage would be to provide PABX operator with a daily check list report.
This is a MS Access 2000 application that can be use to generate reports for Microsoft ISA Server. It provides proxy admin with reports such as: Site violation (summary of unauthorized site access, like chatting (what!?), porn, etc); Site violation detail (detail of Site Violation); Bandwidth usage (resembles ISA built-in report, but with division between working hours and non-working hours); and User using multiple workstation (to detect stolen Internet user password). It has unattended mode option, Windows UserID to full name lookup, and is able to send the report automatically via email to the given administrator mail address.
Note that ISA Reporting requires VB 6 Runtime DLL (for the configuration tool) in order to work properly. That's why the size is quite small.
This also had a mirror at ISATools.org.
This is a same application like ISA Reporting, but it is configured for Raptor Firewall (Now Symantec Enterprise Firewall, I think). I must say that it is a lot more nastier than ISA Reporting, but it also works well too ;).
Anyway, Raptor Reporting can generate two kinds of report: Rule Violation and Blacklisted Host Activity. Rule Violation contains all records NOT matching your defined firewall policy. Blacklisted Host Activity records all activity of host that is considered hostile enough by IDS (like Symantec NetProwler). Off course, in order to effectively utilize the later report, you'd have to already configured Raptor and IDS integration first.
Raptor Reporting also *requires* MS-Access 2000, and have unattended mode + reporting via email like ISA Reporting does.
NTRunAs is a tool for Windows NT 4 that enables interactive user to run any command as another user that has a higher privilege. In other words, it implements a function similar to the runas service found in W2K (or higher, hopefully). The distribution also include an ATL COM dll that can be used to access the service from within another application.
AutoRoute is a Windows Service that can be used to auto-switch the default gateway of a Windows machine. It will monitor the main link periodically, and switch the default gateway to the backup route whenever the main link is down. Later when the main link is up, AutoRoute will switch the machine default gateway back to it. Additional feature includes activity logging to csv file, admin notification through external script, and offcourse, a GUI configuration tool :-).
This tool consist of two Perl scripts for win32 that can be use to check mail service availability. Sample usage including unattended execution and periodic checking are provided in the README.TXT file within the archive. The script works by sending email to any Internet auto-responding service, and check for the replies in the user mailbox through POP3. If it cannot find the auto-responding response, Mailcheck will assume there's a mail delivery problem, and hence, trigger a notification to administrator through windows messenger service.
This is the same as Mailcheck, except that it is used to check web servers front page availability and consistency (just in case you're paranoid, and would like to be alerted when your IIS had just being defaced .. I know my phb does). I'll rewrite this as an .exe file when I had the time later.
This is a tool that measures the response time of a ftp/http/https URLs. It can also be used to dump the obtained page to stdout.
This one is simple and I really don't know the real use of it, except for fun. Basically this is a replacement of "net send" command in NT (or higher), with the ability to specify the sending machine name, and the number of message to be sent.
I personally use it to force my over-worked friend to stop whatever he is doing at lunchtime ;)
And .. aside of what you might think of by seeing this page appearances, I do web development too (with some security, I guess).
Last Updated:02/26/2004
Bandwidth and web space provided courtesy of
Netikus.Net ltd.
Netikus.Net ltd is not responsible or associated
with the contents of this page.