endpoint
Comodo Endpoint Security Manager includes Comodo?s award winning firewall and antivirus which protects computers with a ?defaultLicense:Freeware
Comodo Endpoint Security Manager 1.3
Comodo Endpoint Security Manager is regarded as a useful tool designed to enable the remote, centralized management of end-point security products such as Comodo Internet Security on corporate workstations. more>> <<less
FortiClient Endpoint Security Free Edition 4.1.0.132
FortiClient Endpoint Security supplies you with a smart and comprehensive anti-virus program which comes with a full suite of endpoint security more>>
FortiClient Endpoint Security Free Edition 4.1.0.132 supplies you with a smart and comprehensive anti-virus program which comes with a full suite of endpoint security of a powerful advanced threat protection engine. FortiClient Standard Security Suite FREE edition offers a comprehensive layer of PC protection to prevent against virus infection and malware attacks.
Fortinet offers a patent pending, ultra fast scan technology with daily protection updates against new virus threats and malicious code through the FortiGuard global threat protection center. FortiClient's simple to use interface provides exceptional ease while offering users maximum flexibility. The free version of this program is robust, however for enterprises who demand centralized management for a wider user base, they should consider FortiClient Premium Edition paired with FortiManager.
Enhancements:
- Adds an all new user interface, SSL VPN client, Application Control, and WAN Optimization capability.
Windows NT RPC Endpoint Mapper Vulnerability Patch MS01-048
Windows NT RPC Endpoint Mapper Vulnerability Patch has come as a smart tool to deal with the Malformed RPC Packet security vulnerability in computers running Windows NT 4.0 more>>
Windows NT RPC Endpoint Mapper Vulnerability Patch MS01-048 has come as a smart tool to deal with the 'Malformed RPC Packet' security vulnerability in computers running Windows NT 4.0 and is discussed in Microsoft Security Bulletin MS01-048. Download now to prevent a malicious user from launching a denial of service attack using the Remote Procedure Call (RPC) client. This vulnerability exists because there is an error in the way the endpoint mapper (used by the RPC service to determine which remote port to use) processes queries. If a malicious user sends a malformed RPC query to an affected Windows NT 4.0 computer, it can cause the server to stop responding to requests.
Microsoft Windows NT 4.0 Patch: Malformed Request to RPC Endpoint Mapper Update
Microsoft Windows NT 4.0 Patch: Malformed Request to RPC Endpoint Mapper Update is a reliable and useful update which resolves the Malformed RPC Packet security vulnerability in computers running Windows NT® 4.0 and is discussed in Microsoft Security Bulletin MS01-048. more>> <<less
Harden-It 1.2
Harden-It - harden your Windows installation against numerous attacks more>>
By hardening the IP stack your Network can sustain or completely twarth various sophisticated network attacks. By hardening your Local System lots of current malware, spyware, worm infection are completely blocked, proactively harden your system even against future uknown attacks.
Short Features:
- Harden your servers TCP and IP stack
- Protect your servers from Denial of Service and other network based attacks
- Enable SYN flood protection when an attack is detected
- Set the threshold values that are used to determine what constitutes an attack
Harden-It? is intended for the network/server administrator or the professional internet user. You should not use this tool if you are a novice.
Features:
- Adjusts retransmission of SYN-ACKS. The connection responses time out more quickly during a SYN flood.
- Determines how many connections the server can maintain in the half-open (SYN-RCVD) state before TCP/IP initiates SYN flooding attack protection.
- Determines how many connections the server can maintain in the half-open (SYN-RCVD) state even after a connection request has been retransmitted.
- Specifies the threshold of TCP connection requests that must be exceeded before SYN flood protection is triggered.
- Controls how many times a SYN-ACK is retransmitted before canceling the attempt when responding to a SYN request.
- Determines how many times TCP retransmits an unacknowledged data segment on an existing connection. TCP retransmits data segments until they are acknowledged or until this value expires.
- An attacker could force the MTU to a very small value and overwork the stack by forcing the server to fragment a large number of packets.
- This setting controls how Windows manages connection keep alive transmissions. Specifies how often TCP attempts to verify that an idle connection is still intact by sending a keep-alive packet.
- A denial of service (DoS) attack against Windows servers is to send it a "name release" command. This will cause it to release its NetBIOS, preventing clients from accessing the machine
- Internet Control Message Protocol (ICMP) redirects cause the stack to plumb host routes.
- Disables ICMP Router Discovery Protocol (IRDP) where an attacker may remotely add default route entries on a remote system.
- Determines whether TCP performs dead gateway detection. An attacker could force the server to switch gateways, potentially to an unintended one.
- Specifies AFD.SYS functionality to withstand large numbers of SYN_RCVD connections efficiently.
- Specifies the minimum number of free connections allowed on a listening endpoint. If the number of free connections drops below this value, a thread is queued to create additional free connections.
- Specifies the maximum total amount of both free connections plus those in the SYN_RCVD state. Set to lowest for Workstations!
- Specifies the number of free connections to create when additional connections are necessary.
- This parameter is used to prevent address sharing (SO_REUSEADDR) between processes so that if a process opens a socket, no other process can steal data from it.
- NAT is used to screen a network from incoming connections. An attacker can circumvent this screen to determine the network topology using IP source routing. Disables IP source routing.
- Processing fragmented packets can be expensive. Although it is rare for a denial of service to originate from within the perimeter network, this setting prevents the processing of fragmented packets.Prevents the IP stack from accepting fragmented packets.
- Multicast packets may be responded to by multiple hosts, resulting in responses that can flood a network. The routing service uses this parameter to control whether or not IP multicasts are forwarded. This parameter is created by the Routing and Remote Access Service.
- Your computers running Windows may be responding to Address Mask requests on the network, which could enable malicious users to discover some of your network topology information.
- By default, the DNS resolver accepts responses from the DNS servers that it did not query. This feature speeds performance but can be a security risk.
- Malicious User Can Shut Down Computer Browser Servic. An vulnerability exists in the computer browser protocol ResetBrowser frame that could allow a malicious user to shut down a computer browser on the same subnet, or shut down all of the computers browsers on the same subnet.
- Windows NT has a feature where anonymous logon users can list domain user names and enumerate share names.Users who want enhanced security have requested the ability to optionally restrict this functionality.
- A hidden share is identified by a dollar sign ($) at the end of the share name. Hidden shares are not listed when you look through the shares on a computer or use the net view command. If enabled this option will hide all the administrative shares.
- Determines how many times TCP sends an Address Request Packet for its own address when the service is installed. This is known as a gratuitous Address Request Packet.
- Determines the time that must elapse before TCP can release a closed connection and reuse its resources. This interval between closure and release is known as the TIME_WAIT state or 2MSL state.
OpenVPN 2.0.9
OpenVPN is a full-featured SSL VPN solution more>> OpenVPN is a full-featured SSL VPN solution which can accomodate a wide range of configurations, including remote access, site-to-site VPNs, WiFi security, and enterprise-scale remote access solutions with load balancing, failover, and fine-grained access-controls (articles) (examples) (security overview) (non-english languages).
OpenVPN implements OSI layer 2 or 3 secure network extension using the industry standard SSL/TLS protocol, supports flexible client authentication methods based on certificates, smart cards, and/or 2-factor authentication, and allows user or group-specific access control policies using firewall rules applied to the VPN virtual interface. OpenVPN is not a web application proxy and does not operate through a web browser.
With OpenVPN, you can:
tunnel any IP subnetwork or virtual ethernet adapter over a single UDP or TCP port,
configure a scalable, load-balanced VPN server farm using one or more machines which can handle thousands of dynamic connections from incoming VPN clients,
use all of the encryption, authentication, and certification features of the OpenSSL library to protect your private network traffic as it transits the internet,
use any cipher, key size, or HMAC digest (for datagram integrity checking) supported by the OpenSSL library,
choose between static-key based conventional encryption or certificate-based public key encryption,
use static, pre-shared keys or TLS-based dynamic key exchange,
use real-time adaptive link compression and traffic-shaping to manage link bandwidth utilization,
tunnel networks whose public endpoints are dynamic such as DHCP or dial-in clients,
tunnel networks through connection-oriented stateful firewalls without having to use explicit firewall rules,
tunnel networks over NAT,
create secure ethernet bridges using virtual tap devices, and
control OpenVPN using a GUI on Windows or Mac OS X.
For a good conceptual introduction to OpenVPN, see the program notes for James Yona<<less
IPsecPing 1.5
A small command-line IPsec endpoint testing and debugging tool more>>
IPsecPing 1.5 is a nice little command-line IPsec endpoint testing and debugging tool. It uses the winsock secure socket extensions and supports IPv4, IPv6, IKEv1, and AuthIP.
<<less
logview4net 9.38
A free (open source) log monitor/log viewer for; Files and folders, Incomming UDP and TCP traffic, EventLogs, SQL- Server tables, Atom and RSS feeds more>>
A free (open source) log monitor/log viewer for:
- Files
- Incomming UDP and TCP traffic
- EventLogs
- SQL- Server tables
- Atom and RSS feeds
- StdOut / StdErr
FEATURES:
Listens to UDP and TCP ports either in broadcast or single endpoint mode.
Monitors an eventlog, uses events on the local machine and polling on remote machines.
Monitors a log file or folder. Doing a tail using polling.
Monitors a table in a MS SQL-Server database. Doing a tail using polling.
Monitors Atom and RSS feeds.
Monitors StdOut / StdErr of applications
Can highlight or hide messages depending on content.
Supports multiple simultaneous listeners in each session.
Supports several simultaneous sessions (MDI).
System Requirements: .NET Framework 2.0
<<lessListens to UDP ports either in broadcast or single endpoint mode. Monitors an eventlog, uses events on the local machine and polling on remote machines. Monitors a log file or folder. Doing a tailLicense:Freeware
Main features - Listens to a UDP port either in broadcast or single endpoint mode. - Monitors an eventlog, uses events on the local machine and polling on remote machines. - Monitors a log fileLicense:Freeware
StdOut and StdErr FEATURES - Listens to a UDP port either in broadcast or single endpoint mode. - Monitors an eventlog, uses events on the local machine and polling on remote machines. - Monitorsfeeds Main features - Listens to a UDP port either in broadcast or single endpoint mode. - Monitors an eventlog, uses events on the local machine and polling on remote machines. - Monitors a log
YateClient 1
YateClient is an universal, skinnable VoIP client which supports H.323, SIP and IAX based on the GTK library. more>>
* VoIP server
* VoIP client
* VoIP to PSTN gateway
* PC2Phone and Phone2PC gateway
* H.323 gatekeeper
* H.323 multiple endpoint server
* H.323SIP Proxy
* SIP session border controller
* SIP router
* SIP registration server
* IAX server and/or client
* IP Telephony server and/or client
* Call center server
* IVR engine
* Prepaid and/or postpaid cards system
OpenAFS for Windows (64-bit) 1.5.53
data sharing solution more>> Secure Endpoints Inc. is the primary developer of OpenAFS.orgs OpenAFS for Windows product. The Andrew File System (AFS) is a secure distributed file system which allow users of Microsoft Windows and Unix the world over to share information as easily as if the files were stored on their local disks. OpenAFS for Windows is an AFS client providing users of Microsoft Windows 2000, XP, 2003, Vista and Server 2008 nearly seamless access to the data stored in locally managed and publicly available AFS cells the world over.
Features:
- Compatible with all OpenAFS and IBM/Transarc AFS Server versions
- Support for all editions of Windows Vista including SP1 and Windows Server 2008
- 2007 Daylight Savings Time corrected C Runtime Library DLLs
- AFS credentials module for MIT Kerberos for Windows Network Identity Manager
- Support for 64-bit File Sizes on both 32-bit and 64-bit versions of Microsoft Windows
- Support for 64-bit Windows XP/2003/R2/Vista/2008
- Implements Windows Byte Range Locking backed by AFS File Server Locks
- Implements Inline Bulk Status RPCs which speeds up directory listings
- Uses GetCapabilities RPCs to probe the server status
- Logs fs crypt state to the Windows Event Log
- Supports OutputDebugString debugging of the RX Library
- New command: fs uuid [-generate]
- Improved CIFS protocol compatibility
- Hard Dead and Connection Timeout values restricted to the CIFS Session Timeout value.
- Improved handling of Windows Standby/Hibernate modes when network access is not available
- Significant performance improvements when searching directories containing hundreds or thousands of files and sub-directories
- Reduced time required for file open operations
ENUM Resolver 1.0
ENUM Resolver is an advanced program which satisfies you with a Electronic NUmber Mapping (ENUM) Lookup utility. more>>
ENUM Resolver 1.0 is an advanced program which satisfies you with a Electronic NUmber Mapping (ENUM) Lookup utility. ENUM Resolver is freeware. ENUM Resolver has a very simple, easy to use interface and no configuration needed. You can copy resolved SIP endpoint address by clicking GUI button.
Defzone SSL 2.13
Defzone SSL is a superior and tractable tool VPN client software that can connect to Defzone appliances or Openvpn endpoints. more>>
Defzone SSL 2.13 is a superior and tractable tool VPN client software that can connect to Defzone appliances or Openvpn endpoints. The manual is to be downloaded from the Web site. This version enables you to run the tunnel as a service in a very easy way so you can have a single sign on option when you want to logon to a domain. The configuration is a one-minute process.
countDownTimer 1.0
A full screen, settable countdown timer with audio prompts more>> A full screen, settable countdown timer with audio prompts
The countDownTimer application was designed to be a simple standalone countdown timer that provides visual and auditory cues regarding the timers status.
Timers are often used in classrooms to limit activities, to aid students with transitioning from one activity to another, or for timing activities like cooking. Countdown was designed to work along with Launcher6, and responds to keyboard commands the same way as Launcher6 as noted below.
Like Launcher6 any changes to Countdowns setup are saved automatically in a text file called "countdown.tsu"in the same folder as the Countdown.exe file, and the setup is automatically loaded when Countdown is opened again.
Main features:
- Set Minutes: Choose from the drop down menu.
- Set Seconds: Choose from the drop down menu.
- Automatically Start Countdown: Start counting down upon opening.
- Audio Count Down the Last 10 Seconds: Auditory countdown of 10, 9 , 8...
- Announce Last 4 30 Second Intervals: Auditory cues for 2 minutes, 1 minute 30 seconds...
- Use Endpoint Audio Announcement: A sound or TTS message to play at timer end.
- Use Clipboard Text-to-Speech: Use a clipboard TTS agent to produce auditory cues instead of sound files.
- Exit When Timer Expires: Close Countdown at the end of timer.
- Locate end message sound file: Find the sound file you want for your end message.
- Enter text for final message: Enter your TTS end message as text.
- Load Text-to-Speech Program: Locate your TTS program if necessary.
- Start Countdown: Return to the Countdown screen and commence counting down.
System requirements:
- At least a 233Mhz CPU and 64Mb RAM, and may require Quicktime. If you want to use the text-to-speech (TTS) feature you will also need a clipboard text to speech utility and perhaps the Microsoft Agent technology installed.
AppSense Security Analyzer 1
AppSense Security Analyzer is a distinguished and tractable tool which gives IT and security managers visibility into some of the most common, but often overlooked, endpoint weaknesses by identifying holes that can be exploited by increasingly sophisticated malware, illegal downloads or user-introduced applications. more>>
AppSense Security Analyzer 1 is a distinguished and tractable tool which gives IT and security managers visibility into some of the most common, but often overlooked, endpoint weaknesses by identifying holes that can be exploited by increasingly sophisticated malware, illegal downloads or user-introduced applications.
No installation is required. Upon launch, AppSense Security Analyzer conducts a comprehensive analysis of a system by attempting to run unauthorized applications and perform various non-disruptive activities on the PC, notebook or server. The degree to which it is able to successfully complete these actions indicates the level of risk faced by that device. In less than 30 seconds, AppSense Security Analyzer creates a report that not only identifies where potential vulnerabilities exist, but also provides guidance on how they can best be addressed.
