Jim Lippard's Security Software

These are some software tools, all in Perl, which I've developed for my own use. Others are welcome to use them for noncommercial use, with no warranty. All were originally written for OpenBSD.

In the absence of other license information within each package, assume that each is copyrighted by Jim Lippard, with all rights reserved, with license granted for noncommercial use. Assume a BSD-3 license.

Also see Github: https://github.com/lippard661

discord.org.pub: signify public key for verifying signed packages
accttools.tgz: Process accounting tools (written for *BSD) for generating a baseline and auditing for divergences from the baseline. Current version is a beta (really more of a proof-of-concept), 0.5, 2012-12-23.
add_host-1.3.tgz: add_host/remove_host, Perl script for adding and removing IPs from files used for firewalling (and from pf tables). Current version is 1.3, 2023-01-29.
faild.pl: Monitors an Internet connection for uptime, fails over to an alternate connection if one is available. Current version is 1.8, 2023-05-11.
reportnew-1.14a.tgz: Monitors logs for new entries and generates email reports for entries matching certain criteria. Works for syslog, cyclog, and multilog formats, and for BSD process accounting logs. Current version is 1.14a, 2023-09-04. Available on Github as an OpenBSD-style package.
rsync-client.pl: Managed synchronization of files between systems via an unprivileged user. Current version is 2023-02-22. Packaged together with some other rsync tools as rsync-tools-20230222.tgz. The latter is available on Github as an OpenBSD-style package.
sha2_create.pl/sha2_compare.pl/sha3_create.pl/sha3_compare.pl: Creates databases of SHA2/SHA3 digests and compares against them. Also supports SHA1, but that is deprecated. Intended for setting baselines for use in forensic analysis, similar to the Sun Solaris Fingerprint Database, and for finding and removing unused files after an upgrade -- that use case now obsoleted by OpenBSD's sysclean. The following databases of OpenBSD SHA2/SHA3 digests are available:
sigtree-1.17c.tgz: Tripwire/Samhain-like program, monitors file system integrity. Written for *BSD, macOS, and Linux. Current version is 1.17c, 2022-01-23. Available on Github as an OpenBSD-style package.
syslock/sysunlock: Sets system files immutable, so that they cannot be changed by root unless the system is brought into single-user mode. Written for OpenBSD, but will work with *BSD with the appropriate changes to the locations of commands (e.g. chflags). Current version: 1.4e, 30 August 2023. Available on Github as an OpenBSD-style package.