Network Security Toolkit (NST v1.8.1)

Welcome to the Network Security Toolkit (NST). This bootable ISO live CD/DVD is based on Fedora. The toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms.

The main intent of developing this toolkit was to provide the network security administrator with a comprehensive set of Open Source Network Security Tools. The majority of tools published in the article: "Top 100 Security Tools" by insecure.org are available in the toolkit.

What we find rather fascinating with NST is that we can transform most x86 systems (Pentium II and above) into a system designed for network traffic analysis, intrusion detection, network packet generation, wireless network monitoring, a virtual system service server, or a sophisticated network/host scanner. This can all be done without disturbing or modifying any underlying sub-system disk. NST can be up and running on a typical x86 notebook in less than a minute by just rebooting with the NST ISO CD/DVD. The notebook's hard disk will not be altered in any way.

NST also makes an excellent tool to help one with all sorts of crash recovery troubleshooting scenarios and situations.

Latest News

2009-Jan-08

We are pleased to announce the latest NST release: "v1.8.1". This release is based on Fedora 8 using the Linux Kernel: "2.6.26.8-57.fc8". Here are some of the highlights for this release:

Enhanced the management of snort IDS systems via the NST WUI. It is much easier to setup a federation of snort IDS sensors with backend mysql IDS collector(s).
The addition of the "WebDAV Resources" packages. This allows interacting with devices such as the Apple iPod touch using the Air Sharing application.
Major updates to nmap and its related tools including better support in the NST WUI for managing nmap results.
Added access terminal server functionality using minicom from the NST WUI. This allows one to manage and connect to many serial ports remotely.
Enhanced the monitoring of serial data streams using the NST WUI. This includes detailed documentation and diagram.
Support for saving and loading packet capture and display filters in the single and multi-tap network packet capture sections of the NST WUI.
Added support scripts for using a USB modem to connect to the Sprint PCS Mobile Broadband service.
Updated the NST WUI with support for taking GPS enhanced kismet capture files and producing KML output files which can be viewed in Google Earth or Google Maps.
Many clean ups and minor enhancements have been made to the NST WUI.
As always, the networking and security applications included have been updated to their latest version (See the "Change Log" for individual package updates).

2008-Jun-27

We are pleased to announce the latest NST release: "v1.8.0". This release is based on Fedora 8 using the Linux Kernel: "2.6.25.6-27.fc8". Here are some of the highlights for this release:

The NST Web User Interface (WUI), has been greatly enhanced and cleaned up. Some note worthy enhancements include:
- Multi-Tap Network Packet Capture and Management. Simultaneous network packet capture on up to 4 network interfaces per Multi-Tap session is supported. For example, one can capture network packets from the clean and dirty side of a firewall device and have the results automatically merged into a single capture file for analysis. See the "Multi-Tap Network Packet Capturing" page at the "NST Wiki" for further information.
- An enhanced Network Packet Capture Mangement and Status Interface.
- The use of AJAX and JSON to provide a more dynamic and interactive NST WUI. For example, the network interface label on the NST Start page can be clicked on to monitor that interface in real-time.
- Support for WPA-PSK wireless connections.
- Extensive tooltips and a new menu bar allowing one to quickly navigate the NST WUI.
- A "NST JavaScript Console" has been added. This is an interactive interface and library of JavaScript objects, functions, methods and properties designed to help software engineers diagnosis and develop "JavaScript Code" for building dynamic web pages. It is located on the bottom footer of every page including the one you are on.
We transitioned from Fedora Core 5 to Fedora 8 as the underlying base of the NST.
The addition of wireless firmware packages to support several new wireless chipsets.
One should be able to boot the NST CD from SATA attached CD drives.
As always, most networking and security applications included have been updated to their latest version (See the "Change Log" for individual package updates).

Old News

Follow this link for old news.

Getting
Started

Download ISO
Burn CD/DVD
Boot CD/DVD

-- Or --

Download Virtual Machine
Boot Virtual Machine

Network Security

Latest NST Changes

NST Change Log

In The News

2009-Jan-21: NST in top 10 Virtual Appliance list: Most popular VMWare Virtual Appliances for IT Administrators
2008-Jul-23: Network Security Toolkit distribution aids network security administrators
2008-Feb-08: Tom Bowers' Network Security Toolkit presentation at SearchSecurity.com.
2006-Jun-15: SECURITY MATTERS NST Goes Virtual Too
2005-Dec-01: Toolkits: All-in-one Approach to Security
2004-Dec-08: Tutorial on Installing and configuring Snort on Fedora core 2: An Intrusion Analyst's, developer's & a researcher's perspective
2004-Dec: A Bootable Network Security Toolkit
2004-May-2: Wilders Security Forums
2004-Apr-30: GEEK.com
2004-Apr-30: Insecure.Org
2004-Apr-28: Windows & .NET Magazine

CRYPTOGRAPHY DISCLAIMER

EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME PARTS OF THE WORLD. WHEN YOU IMPORT THE PREBUILT NST ISO TO YOUR COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST EMAIL TECHNICAL SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS OF NST ARE NOT LIABLE FOR ANY VIOLATIONS YOU MAKE.