Network Security Toolkit (NST v1.5.0)

Welcome to the Network Security Toolkit (NST). This bootable ISO live CD is based on Fedora. The toolkit was designed to provide easy access to best-of-breed Open Source Network Security Applications and should run on most x86 platforms.

The main intent of developing this toolkit was to provide the network security administrator with a comprehensive set of Open Source Network Security Tools. The majority of tools published in the article: "Top 100 Security Tools" by insecure.org are available in the toolkit.

What we find rather fascinating with NST is that we can transform most x86 systems (Pentium II and above) into a system designed for network traffic analysis, intrusion detection, network packet generation, wireless network monitoring, a virtual system service server, or a sophisticated network/host scanner. This can all be done without disturbing or modifying any underlying sub-system disk. NST can be up and running on a typical x86 notebook in less than a minute by just rebooting with the NST ISO CD. The notebook's hard disk will not be altered in any way.

NST also makes an excellent tool to help one with all sorts of crash recovery troubleshooting scenarios and situations.

Latest News

2008-Mar-01

Our revamp of the NST Web User Interface (WUI) is still on going. We have added a new menu based navigation system to both the NST WUI and Web Site. We are thinking two months until the next release (which will be based on Fedora 8). Here are some of the things you may be interested in:

We are continuing to make progress at adding extensive DOM Tooltips throughout the NST WUI (examples of some of these tool tips can be found on the header and footer bars used throughout the web site).
We have added DOM Menu to both the NST WUI and this Web Site to simplify the navigation process.
A development release of the NST WUI is available for installation. If you have a 1.5.0 release of the NST you can update it's NST WUI (from the NST WUI index page, go to the 'NST WUI Update Management' link in the 'Downloads & Updates' row of the 'System' table).
We have found ourselves making more and more use of JavaScript in our development. We've found that having the ability to turn on a 'JavaScript Console' at the bottom of any page under development to be particularily useful (try clicking on the JC icon at the bottom of this page as an example). It allows us to perform diagnostic tests in a consistent manner regardless of what browser we are currently testing. Use the "Tools" => "JavaScript" => "Browser JavaScript Information" page for additional information.

2007-Nov-13

Our revamp of the NST Web User Interface (WUI) is taking a long time (We are greatly enhancing the documentation via the use of DOM Tooltips). We still don't have an estimate for the next release (which will be based on Fedora 7), but we have had several users build there own ISO images via notes found on the: "NST Wiki".

2007-May-30

There have been two NST development tracks currently underway over the last few months:

Enhancements to the NST WUI which is complete.
Porting NST to FC6 which is now almost complete.

2007-May-30

A new stable update for the NST WUI management interface is now available for the NST v1.5.0 release. This update includes many enhancements to the Network Packet Capture Interface and bug fixes to the NST WUI. See the README associated with the update for further details. Use the "System" => "NST WUI Update Management" page for installation.

2007-Mar-15

A stable update for the NST WUI management interface is now available for the NST v1.5.0 release. This update include many enhancements and bug fixes to the NST WUI. See the README associated with the update for further details. Use the "System" => "NST WUI Update Management" page for installation.

2007-Feb-25

We have just added an NST Wiki site. NST users please feel free to setup an account and share your experiences, advice and/or interesting topics associated with the NST distribution.

2007-Feb-23

The shell services at SourceForge have been down for the past 11 days. Unfortunately this occurred right in the middle of the NST 1.5.0 release. While we have been unable to update the web server during this time period, we were able to upload the files associated with the 1.5.0 release. These files, as many of you have already discovered, have been available for the past 11 days. We will finalize the release today by updating the on-line documentation files at the web server (what you are reading now).

2007-Feb-12

We are pleased to announce the latest NST release: "v1.5.0". This release is based on Fedora Core 5 using the Linux Kernel: "2.6.18-1.2257.fc5". Here are some of the highlights for this release:

The NST Web User Interface (WUI), has been greatly enhanced and cleaned up. Some note worthy enhancements include:
- Extensive additions to managing and analyzing network packet captures. This includes packet capture uploading to a probe and comprehensive HTML reports generated from PDML output.
- The ability to setup and manage printers (you can easily turn a NST system into print server). This was accomplished by adding a CUPS Management NST WUI page.
- The ability to easily mount many different supported file system types.
- The ability to manage the NST as a file server (both NFS and CIFS).
- The ability to upload files to the NST system.
- The ability to edit All ASCII files on the NST probe.
The addition of the Inprotect package (a Nessus manager), the nstinprotect supporting script and a WUI front end to help walk one through the setup. A new article: "Inprotect Setup Guide", will help guide you through the Inprotect setup process.
The addition of the Zabbix package (another network resource monitoring tool - similar to Nagios), the nstzabbix supporting script and a WUI front end to help walk one through the setup.
We transitioned from Fedora Core 4 to Fedora Core 5 as the underlying base of the NST.
As always, most networking and security applications included have been updated to their latest version (See the "Change Log" for individual package updates).

Old News

Follow this link for old news.

Getting
Started

Download ISO
Burn CD/DVD
Boot CD/DVD

-- Or --

Download Virtual Machine
Boot Virtual Machine

Network Security

Latest NST Changes

NST Change Log

In The News

2008-Feb-08: Tom Bowers' Network Security Toolkit presentation at SearchSecurity.com.
2006-Jun-15: SECURITY MATTERS NST Goes Virtual Too
2005-Dec-01: Toolkits: All-in-one Approach to Security
2004-Dec-08: Tutorial on Installing and configuring Snort on Fedora core 2: An Intrusion Analyst's, developer's & a researcher's perspective
2004-Dec: A Bootable Network Security Toolkit
2004-May-2: Wilders Security Forums
2004-Apr-30: GEEK.com
2004-Apr-30: Insecure.Org
2004-Apr-28: Windows & .NET Magazine

CRYPTOGRAPHY DISCLAIMER

EXPORT/IMPORT AND/OR USE OF STRONG CRYPTOGRAPHY SOFTWARE, PROVIDING CRYPTOGRAPHY HOOKS OR EVEN JUST COMMUNICATING TECHNICAL DETAILS ABOUT CRYPTOGRAPHY SOFTWARE IS ILLEGAL IN SOME PARTS OF THE WORLD. WHEN YOU IMPORT THE PREBUILT NST ISO TO YOUR COUNTRY, RE-DISTRIBUTE IT FROM THERE OR EVEN JUST EMAIL TECHNICAL SUGGESTIONS OR EVEN SOURCE PATCHES TO THE AUTHOR OR OTHER PEOPLE YOU ARE STRONGLY ADVISED TO PAY CLOSE ATTENTION TO ANY EXPORT/IMPORT AND/OR USE LAWS WHICH APPLY TO YOU. THE AUTHORS OF NST ARE NOT LIABLE FOR ANY VIOLATIONS YOU MAKE.