Here's all sorts of links to security related things, ftp sites,
mailing lists, everything!
-
-
HTTP Sites
- The Firewalls Page.
- A locally managed page about Firewalls.
- The Encryption Page.
- A locally managed page about encryption.
- The Intrustion Detection Page.
- A locally managed page about intrusion detection.
- The Surveillance Page.
- A locally managed page about surveillance.
- Distributed Denial of Service (DDoS) Attacks/tools.
- Probably the best source of information about DDoS attacks and tools.
- Rwhois.
- Rwhois Development Pages.
- Whois.
- Who is on the net.
- IP NETWORK INDEX.
- Who is on the net.
- CERT.
- Computer Emergency Response Team.
- AusCERT.
- Australian Computer Emergency Response Team.
- DFN CERT.
- German Computer Emergency Response Team.
- FIRST.
- Forum of Incident Response and Security Teams (FIRST).
- netsys.com.
- Unix.Internet.Security.
- SecurityFocus.
- New home of Bugtraq's own archives.
- Sun Vulnerability Calculator.
- Sun vulnerability calculator from SecurityFocus.
- Sun Vulnerability FAQ.
- Sun vulnerability FAQ from SecurityFocus.
- Focus on Sun.
- Focus on Sun from SecurityFocus.
- BugTraq Archives.
- Bugtraq's own archives.
- Infilsec - Vulnerabilities.
- A vulnerability search engine based on discussions on Bugtraq,
NTBugtraq and Best-of-Security.
- BUGTRAQ.
- BUGTRAQ Mailing List Archives.
- Reference.com BUGTRAQ Archives.
- Yet another BUGTRAQ Mailing List Archive.
- Computer Crime Reference Index.
- A computer crime search engine.
- Security Related Mailing Lists.
- Mailing List Archives.
- IP Filter.
- IP filter for Solaris, SunOS, NetBSD, FreeBSD, and BSDOS.
- IP Filter Documentation.
- IP Filter HOWTO.
- Connecting a Private Network to an ISP on Solaris.
- SUID/SGID Wrapper.
- Joe's Generic SUID/SGID Wrapper v2.
- The Buffer Overflow Page.
- UNIX Security: the Buffer Overflow problem.
- MIT Kerberos.
- MIT Kerberos Home Page.
- Kerberos Form.
- Fill out the Kerberos fetch form.
- Kerberos.
- Kerberos: The Network Authentication Protocol.
- Kerberos Reference Page.
- Discussion of Kerberos.
- Cookie Jar.
- Cookie Jar- Control which servers can get your cookies!
- SRI Computer Science Lab.
- SRI has responsibility for the ACM Forum on Risks in the Use of Computer
and Related Systems. Here you'll find a link to it.
- SRI WWW Server
- NEC SOCKS WWW Server
- CIAC - Computer
Incident Advisory Capability
- Purdue COAST Project
- Purdue COAST Project Newsletter
-
(Computer Operations, Audit and Security Tools).
A great ftp site collecting many things pertinant to security.
- Princeton University Secure Internet Programming.
-
The Secure Internet Programming Home Page is produced by the Princeton
University Computing Science Departement.
- Raptor Eagle
Network Isolator.
- Breakwater Technologies markets a commercially available internet firewall.
- En Garde Systems Inc.
- En Garde Systems markets security software.
- En Garde Systems Inc. Safe! at home page
- En Garde Systems owner's home page.
- Digital
Secure Systems
- digital markets a series of products and services for
internet security.
- RSA Data Security, Inc.'s Home Page.
- RSA
provides the defacto industry standard in public key encryption.
- NIST WWW - Home Page
- The National Institute of Standards and Technology has a lot of information
on computer security. Try the keyword "security" from their search tool.
- NIST Computer Security Clearinghouse
- The National Institute of Standards and Technology's Computer Science Laboratory, Computer Security Divison Computer security clearinghouse.
- NIST CSRC
- NIST National INformation Systems Security Conference Page.
- Unix Security
- This section of the Advanced Laboratory Workstation Project contains a lot
of information on security, including access to governmental bulletins.
- NASA Automated Systems Incident
Response Capability
- Not really of much use, you can't go beyond an introductory screen
without authorization.
- The Orange Book.
- DEPARTMENT OF DEFENSE STANDARD, DoD 5200.28-STD.
- The Orange Book Summary.
- Trusted Computer System Evaluation Criteria.
- The Orange Book.
- Another HTML copy of the Orange Book..
- X Windows Security
- Improving X security using mit-magic-cookie and xauth.
- Nessus Project.
- Nessus is a free, open-sourced and easy-to-use security scanner.
- Internet Security Systems, Inc.
- WheelGroup Corporation.
- infowar.com
- Information Warfare.
- Security Digest.
- Security Digest by Seven Locks Software.
- HOWTO: Finger Tracing - III
- Detecting being fingered.
- Linux Security WWW
- 4.4BSD C2-Style Auditing Subsystem.
- Linux Security Issues.
- Psionic Software Systems Inc.
- Logcheck from Psionic Software Systems Inc.
- Abacus from Psionic Software Systems Inc.
- SNI - Secure Networks Incorporated.
- Georgia RACF Users' Group
- Security-related files
- RUG Newsletters
- Matt's Unix Security Page
- L0PHT
- Phrack
- SECURITY and HACKERSCENE
- SECURITYSOFTWARE
- Security and Underground Collection.
- SSH Links.
- More Security Links.
General FTP Sites
- CERT FTP Server
- Computer Emergency Response Center FTP site. Many advisories and tools are available here.
- DFN CERT FTP Server
- German Computer Emergency Response Center FTP site. Many advisories and tools are available here.
- CIAC FTP Server
- Computer Incident Advisory Capability Ftp site.
- COAST Security FTP Archive
- Computer Operations, Audit and Security Tools ftp site.
- Greatcircle FTP
Server (firewalls)
- This is the system the firewalls mailing list lives on, and contains
an extensive list of documentation and other useful information about
firewalls.
- Trusted Information Systems (TIS) FTP Server
- TIS does consulting in the firewalls market. They also have a very
complete suite of software to implement a firewall available by anonymous
ftp.
- AT&T FTP Server
- Athena FTP Server
- From MIT, the Athena Project has more to offer than X. Among other
things, you'll find kerberos software here, as well as a great collection
of USENIX papers, and other tasty tidbits.
- ANL FTP Server
- Argonne National Labratory's FTP server. It contains, among other
things, Kerberos patches.
- BBN FTP Server
- BBN security archive. They have CERT and CIAC alerts, NIST
publications, Department of Defense Alerts, pagers, security programs, etc...
- DDN Security Bulletins FTP Server
- This is the NIC's security ftp server. Skip all the files starting with
ddn-security- until you get down to ddn-security-8901. All the previous
ones will just tell you that the naming conventions have changed, and you're
looking at the wrong file.
- Texas AMU security tools
- Texas A&M, in response to being broken into, has developed a lot of
expertise in detecting and preventing breakins. Here you'll find papers and
tools.
- COAST
- intrusion_detection
- AI and statistical tools to detect intrusion.
- SRI's NIDES Next-Generation
Intrusion Detection System
Gopher Sites
- FIRST Gopher
News Groups
- comp.security.misc
- alt.security
- comp.security.announce
- sura.security
- alt.security.pgp
- alt.security.keydist
- alt.security.ripem
- comp.security.unix
- comp.protocols.kerberos
- comp.virus
- comp.risks
FTP Sites for FAQs
- FAQ for comp.security.misc
- FA
Q for alt.security
- FAQ for comp.security.unix
- FAQ
for comp.virus
FTP Alert Sites
- CIAC - Computer
Incident Advisory Capability
- AUSERT - Australian Security Emergency
Response Team
- SNI - Secure Networks Incorporated.
Other Alert Sites
- 8LGM
Hacker Sites
- No More Secrets!
- underground.org
- rootshell.com.
- rootshell.com.
- daemon9
- daemon9 projects.
- PullthePlug Dot Com.
- gothacked.net.