netfilter topic
rust-iptables
Rust bindings for iptables
iptables-tracer
Insert trace-points into the running configuration to observe the path of packets through the iptables chains.
HiddenWall
Tool to generate a custom Linux kernel module for Hidden firewall in kernel land. (block/open ports, Hidden mode, firewall functions block syn scans)
BinderFilter
A Linux kernel IPC firewall and logger for Android and Binder
DrawBridge
Layer 4 Single Packet Authentication Linux kernel module utilizing Netfilter hooks and kernel supported Berkeley Packet Filters (BPF)
conntrack
Pure-Go Conntrack implementation; for humans.
geo-nft
Bash script to create nftables sets of country specific IP address ranges for use with firewall rulesets. The project provides a simple and flexible way to implement geolocation filtering with nftable...
nft-geo-filter
Allow/deny traffic in nftables using country specific IP blocks
opensvp
Opensvp is a security tool implementing "attacks" to be able to test the resistance of firewall to protocol level attack.
conntracker
A good addition to your conntrack-tools package. Conntracker acts like a firewall sniffer, it analysis, realtime, with very low overhead, all iptables (or nf_tables) existing flows and inform you, at...