Links

Network Security Toolkit (NST v1.4.1)

Welcome to the Network Security Toolkit (NST). This bootable ISO live CD is based on Fedora Core 4. The toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms.

The main intent of developing this toolkit was to provide the network security administrator with a comprehensive set of Open Source Network Security Tools. The majority of tools published in the article: Top 100 Security Tools by insecure.org are available in the toolkit.

What we find rather fascinating with NST is that we can transform most x86 systems (Pentium II and above) into a system designed for network traffic analysis, intrusion detection, network packet generation, wireless network monitoring, a virtual system service server, or a sophisticated network/host scanner. This can all be done without disturbing or modifying any underlying sub-system disk. NST can be up and running on a typical x86 notebook in less than a minute by just rebooting with the NST ISO CD. The notebook's hard disk will not be altered in any way.

NST also makes an excellent tool to help one with all sorts of crash recovery troubleshooting scenarios and sitbuations.

2006-Aug-17 We are pleased to announce the latest NST release: v1.4.2. This release is based on Fedora Core 4 using the Linux Kernel: 2.6.17-1.2142_FC4 or 2.6.17-1.2142_FC4smp. Many new NST WUI features and capabilities have been included with this distribution: The addition of fruity, fruity templates and the nstfruity script to simplify the management of nagios. The addition of sguil and the nstsguil script to simplify the setup and use of sguil (sorry - no NST WUI interface page yet). The addition of the barnyard link package (primarily to support sguil). The addition of niktorat reports and a NST WUI management page to simplify the use of nikto. The addition of the tidy plugin for firefox to aid one in validating the HTML produced by web servers. The addition of p0f and a NST WUI management page to allow one to passively determine the host OS from captured network data. Cleaned up DHCP configuration so that it should work cleanly even if one sets up DHCP on a interfaces other than eth0. We have transitioned from the network protocol analyzer: Ethereal to the new Wireshark. The Network Packet Capture web-based front-end has again been enhanced with more filters and XML processing. The removal of the "@" character from the default password (this was causing issues for people with non-US keyboards). Added the THC-secure_delete package. This marks the first release where both a ISO and Virtual Machine version of the NST will be available. As always, most networking and security applications included have been updated to their latest version and continued refinement of the NST WUI. 2006-July-18 NST has transitioned from the network protocol analyzer: Ethereal to the new Wireshark version: 0.99.2. This will be available in the pending NST v1.4.2 release. 2006-July-13 We've moved the web site to a new web hosting service. The site may be temporarily unreachable during the 13th-14th as we make the move. 2006-June-22 We've made it possible to download the Network Security Toolkit (NST) Virtual Machine v1.4.1 using a normal browser from the SourceForge Files Page as well as using the Torrent method provided at the VMware website. Download NST Virtual Machine 2006-June-5 The latest NST release: v1.4.1 is now available as a VMware virtual machine download. See the Network Security Toolkit (NST) Virtual Machine page at the VMware website to download. This release is based on Fedora Core 4 using the Linux Kernel: 2.6.16-1.2108_FC4 or 2.6.16-1.2108_FC4smp. Some of the highlights for the new release include: A enterprise class patch management system for NST WUI updates and system file patches and updates. A new nstvmware script to facilitate the use of NST within a VMware virtual machine. The inclusion of the VMware Tools and modules to optimize the NST performance within a VMware virtual machine. Some nice 'look-and-feel' enhancements to the X and NST WUI interface. Many new enhancements to the NST WUI database management pages for both the MySQL and PostgreSQL database servers. Replaced the NST WUI network protocol anaylzer capture engine: "tethereal" with the new light-weight "dumpcap" application which is part of the new "ethereal" v0.99.0 protocol analyzer suite. Many networking and security applications have been updated to their latest version. We've decided to wait until the v1.4.2 release to do a SourceForge Live CD release. Old News Follow this link for old news.

Getting Started Download ISO Burn CD/DVD Boot CD/DVD -- Or -- Download Virtual Machine Boot Virtual Machine Network Security wireshark (ethereal) nessus snort nmap ntop kismet Many more Latest NST Changes   NST Change Log   In The News 2006-Jun-15 SECURITY MATTERS NST Goes Virtual Too 2005-Dec-01 Toolkits: All-in-one Approach to Security 2004-Dec-08 Tutorial on Installing and configuring Snort on Fedora core 2: An Intrusion Analyst's, developer's & a researcher's perspective 2004-Dec A Bootable Network Security Toolkit 2004-May-2 Wilders Security Forums 2004-Apr-30 GEEK.com 2004-Apr-30 Insecure.Org 2004-Apr-28 Windows & .NET Magazine

EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME PARTS OF THE WORLD. WHEN YOU IMPORT THE PREBUILT NST ISO TO YOUR COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST EMAIL TECHNICAL SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS OF NST ARE NOT LIABLE FOR ANY VIOLATIONS YOU MAKE.