This is the page where you can find software developed by QUIVIR staff
by Pablo Neira
The Connection Tracking System is an in-kernel subsystem that stores information about the state of the connections that the firewall is currently forwarding. Such extra information inherently enables a more intelligent way to define filtering policies that is also known as Stateful firewalling. In other words, this subsystem let us detect malformed packets, invalid sequences for OSI layer 3 and 4 protocol, eg. TCP reset attacks and portscans, and other rarities that are invalid in terms of the protocol specification.
- AFPL v2
by Sergio Pozo. Abstract Firewall Policy Language, AFPL v2, is an abstract domain
specific language to model firewall ACLs. The main design objectives
are simplicity, support of a wide range of features also supported by
the marked-leader firewall platforms (including NAT), and
extensibility. In fact, ACLs specified with it can be compiled to
market-leader firewall languages. Its main features and design issues
have been described in several publications (available in my publication list).
- TestPointAllocator by Diana Borrego. This web application allocates test points in business processes in an efficient way, in order to monitor them, improving their diagnosability and making easier a later diagnosis process. The allocation of test points is performed in accordance with three different objectives which depend on the needs or the requirements to achieve.
- OPBUS-* by Angel Jesus Varela Vaca. This web site contains information and downloable content related to OPBUS framework. OPBUS is a framework composed of different tools for automated risk
management of business processes. OPBUS is ready to use solvers for the
automated analyses in business processes.