Linux SoftwareSystemNetworkingEgressor 1.0

Egressor 1.0

MITRE has released a freeware tool that allows a company to check the configuration of their Internet point-of-presence router
Developer:   MITRE
      more software by author →
Price:  0.00
License:   GPL (GNU General Public License)
File size:   0K
Rating:   0 /5 (0 votes)
Your vote:  
enlarge screenshot

MITRE has released a freeware tool that allows a company to check the configuration of their Internet point-of-presence router. Egressor will help companies determine whether their routers are configured to the Help Defeat Denial of Service Attacks guidelines. This configuration of egress filtering reduces the chance that their computers can unwittingly contribute to a distributed denial of service attack.

The tool has two parts; a generator and a receiver. The test generator (or "client") is being provided as C source code and the test receiver (or "server") is a PERL script. Both are currently known to work on LINUX, and the server also works on Solaris.

This egress filtering diagnosis tool is provided as a public service subject to the terms of the License Agreement. This tool is merely an aid; security remains the responsibility of the user.
This tool is intended to assist information security specialists in conducting a vulnerability analysis of their network by identifying potential weaknesses in their network configuration; however, the use of this tool can not guarantee adequate information security or that a network has adequate egress filtering.

This tool should not be used on an information system without the specific authorization of the person responsible for the information security of that system. This tool is not intended to serve, and should not be considered, as a substitute for qualified information security specialists or an information security program tailored to your information system. You should consult with a qualified information security specialist to properly interpret the results of this vulnerability analysis and before taking any corrective action.

Briefly, the client generates a stream of packets, some of which are spoofed. The server listens for test packets, and determines if spoofed packets were received as part of the test. The server then generates a report of the results, indicating whether spoofed packets were received or not. Figure 1 shows the two scenarios that the tool can find including the html versions of the reports. There is also a "daemon" option which causes the server to run indefinitely.


Ensure you have a gcc compiler, and GNU make.
Ensure you have LIBNET installed.
Change directories to where you wish to install the egressor directory
Untar egressor.tar:

tar -xvfz egressor.tar.gz

Edit makefile to refer to the location of libnet
Build the package:

tags information security  this tool  the server  egress filtering  the test  packets were  spoofed packets  the results  qualified information  you have  egressor tar  ensure you  were received  

Download Egressor 1.0

Authors software

Egressor 1.0 (by MITRE)
MITRE has released a freeware tool that allows a company to check the configuration of their Internet point-of-presence router

Similar software

Egressor 1.0 (by MITRE)
MITRE has released a freeware tool that allows a company to check the configuration of their Internet point-of-presence router

Network Security Analysis Tool 1.5 (by mixter)
Network Security Analysis Tool is a fast, stable bulk security scanner designed to audit remote network services and check for versio

Firewalk 5.0 (by Mike D Schiffman)
Firewalk is an active reconnaissance network security tool that attempts to determine what layer 4 protocols a given IP forwarding d

Security Officers Best Friend 01082006 (by
Security Officers Best Friend (SOBF) is a Security Management and Analysis tool designed to be placed right ontop the Repos

DNSA 0.5 (by Pierre BETOUIN)
DNSA and DNSA-NG are swiss knife tools for Linux designed to test several DNS security issues.

The most important one is a full wi

Panoptis 0.1.4 (by Antonis A. Zissimos)
Panoptis plans to create a network security tool (N-IDS) to detect and block DoS and DDoS attacks

Honeytrap (by Tillmann Werner)
Honeytrap project trap attacks against tcp services

SARA 7.0.2c (by Advanced Research Corporation)
SARA, the Security Auditor's Research Assistant is a third generation network security analysis tool.

Here are some key featu

APSR 0.17-13 (by Martin Kluge)
APSR is a network testing tool, designed to send and receive arbitrary network packets

OS-SIM 0.9.9 RC3 (by Dominique Karg)
Ossim stands for Open Source Security Information Management

Other software in this category

Nmap 4.20 (by Fyodor)
Nmap is a utility for network exploration or security auditing

iptables 1.3.7 (by Harald Welte)
iptables and netfilter are building blocks of a framework inside the Linux 2.4.x and 2.6.x kernel

Linux Bandwidth Arbitrator 9.62 (by astormchaser)
Linux Bandwidth Arbitrator allows beginning-to-advanced network administrators to control bandwidth

Ettercap 0.7.3 (by ALoR NaGA)
Ettercap is a network sniffer/interceptor/logger for ethernet LANs

rdesktop 1.5.0 (by matthewc)
rdesktop is an open source client for Windows NT Terminal Server and Windows 2000/2003 Terminal Services, capable of natively speakin


Featured Software

jEdit 4.3 pre8
jEdit is an Open Source text editor written in Java

Opera 9.02
Surf the Internet in a safer, faster, and easier way with Opera browser

GNU Aspell 0.60.4
GNU Aspell is a Free and Open Source spell checker designed to eventually replace Ispell

Subscribe in Rojo
Google Reader
Add to My Yahoo!

Add to My AOL
Subscribe with Bloglines
Subscribe in NewsGator Online
Add 'nixbit linux software' to Newsburst from CNET nixbit linux software

Top tags