A fail2ban lite. IPQ BDB is a netfilter userspace daemon that can block or mark IP packets according to iptables rules that issue the corresponding -j NFQUEUE, as well as a Berkeley database of bad IPv4 addresses. A log parser and a banning utility add entries to the database. An IP has to be caught a configurable number of times before being blocked. Transitions between blocked and non-blocked are faded using probabilities. A halving period governs IP rehabilitation.
Nagstamon is a Nagios status monitor with a UI that resides in the systray or as a floating statusbar on your desktop. It informs you in realtime about the status of your Nagios, Icinga, Opsview, Ninja, Check_MK/Multisite, Centreon, or Thruk-monitored network. It alerts you with sound and visual notification. Failed hosts and services are easy to connect with by SSH, RDP, and VNC. Custom actions can be run on certain events. It works best with GNOME, but also with KDE, Mac OS X, and Windows.
NOC Project is an Operation Support System (OSS) for telecom companies, service providers, and enterprise Network Operation Centers (NOC). Areas covered by NOC include fault management, performance management, service activation/provisioning, knowledge base, multi-VRF address space management (IPAM), multi-vendor configuration management, DNS provisioning, peering management, RPSL and BGP filter generation, and reporting.
openQRM is a data-center management and cloud computing platform. Its fully pluggable architecture focuses on automatic, rapid, and appliance-based deployment, monitoring, high-availability, cloud computing, and especially on supporting multiple virtualization technologies. openQRM is a single-management console for a complete IT infrastructure and provides a well-defined API which can be used to integrate third-party tools as additional plugins.
spdylay is an experimental implementation of Google's SPDY protocol in C. It provides a SPDY framing layer implementation. It does not perform any I/O operations. When the library needs them, it calls the callback functions provided by the application. It also does not include any event polling mechanism, so the application can freely choose the way of handling events. This library code does not depend on any particular SSL library (except for example programs that depend on OpenSSL 1.0.1 or later).
DMAring demonstrates a novel generic network interface card driver architecture which works in hybrid interrupt-polling mode to deliver superior real-time performance on Linux, Red Hat Linux, or Linux-RTAI-LXRT (a real-time co-kernel for Linux with user level extension). Existing Linux drivers saturate the CPU at a much lower packet rate than the maximum possible wire line packet rate, but this driver allows vanilla network cards to be used for high speed packet capturing.
collectd is a small and modular daemon which collects system information periodically and provides means to store the values. Included in the distribution are numerous plug-ins for collecting CPU, disk, and memory usage, network interface and DNS traffic, network latency, database statistics, and much more. Custom statistics can easily be added in a number of ways, including execution of arbitrary programs and plug-ins written in Perl. Advanced features include a powerful network code to collect statistics for entire setups and SNMP integration to query network equipment.
arp-scan sends ARP (Address Resolution Protocol) queries to the specified targets, and displays any responses that are received. It allows any part of the outgoing ARP packets to be changed, allowing the behavior of targets to non-standard ARP packets to be examined. The IP address and hardware address of received packets are displayed, together with the vendor details. These details are obtained from the IEEE OUI and IAB listings, plus a few manual entries. It includes arp-fingerprint, which allows a system to be fingerprinted based on how it responds to non-standard ARP packets.