Tabula Rasa

Virtual Appliance for Safe and Secure Internet Browsing.

Ideal for Online Banking and other important activities. Tabula Rasa uses an “immutable” or “non-persistent” disk so that no changes are saved at shutdown and no malware or exploits can be used against the system from session-to-session.

You can download it from its project site: http://sourceforge.net/p/tabularasa/wiki/Home/

Short List of Installed Security Applications

• OWASP ZAP – An easy to use integrated penetration testing tool for finding vulnerabilities in web applications
• W3af – Framework to find and exploit web application vulnerabilities
• Nikto – Web server security scanner
• Spikeproxy – Web application security testing proxy
• Web-sorrow – A remote web scanner for misconfig, version detection, and server enumeration tool writen in perl
• Xplico – Network Forensic Analysis Tool (NFAT)
• Wireshark – Network traffic analyzer – GTK+ version
• Tshark – Network traffic analyzer – console version
• Nmap – The Network Mapper
• Zenmap – The Network Mapper Front End
• Scapy – Packet generator/sniffer and network scanner/discovery
• Netexpect – Network Expect, a framework for manipulating network packets
• Netcat – TCP/IP swiss army knife
• Cryptcat – A lightweight version netcat extended with twofish encryption
• Hping3 – Active Network Smashing Tool
• Sqlmap – Automatic SQL injection and database takeover tool
• LATK – Log Analysis Toolkit
• Bless – A full featured hexadecimal editor
• Dcfldd – Enhanced version of dd for forensics and security
• Foremost – Forensics application to recover data
• Guymager – Forensic imaging tool based on Qt
• Scalpel – A Frugal, High Performance File Carver
• DFF – Powerful, efficient and modular digital forensic framework
• Tcpxtract – extracts files from network traffic based on file signatures
• Gddrescue – The GNU data recovery tool
• Testdisk – Partition scanner and disk recovery tool
• Rifiuti2 – A MS Windows recycle bin analysis tool
• Pasco – An Internet Explorer cache forensic analysis tool
• Vinetto – A forensics tool to examine Thumbs.db files
• Unhide – Forensic tool to find hidden processes and ports
• Snowdrop – Plain text watermarking and watermark recovery
• Chntpw – NT SAM password recovery utility
• John the Ripper – Active password cracking tool
• Ophcrack – Microsoft Windows password cracker using rainbow tables
• Fcrackzip – Password cracker for zip archives
• PDFcrack – PDF files password cracker
• PDFchain – Graphical user interface for the PDF Tool Kit
• Dsniff – Various tools to sniff network traffic for cleartext insecurities
• Hydra-gtk – Very fast network logon cracker – GTK+ based GUI
• Kismet – Wireless 802.11b monitoring tool
• Pyrit – GPGPU-driven WPA/WPA2-PSK key cracker
• Sipcrack – SIP login dumper/cracker
• Ettercap – Multipurpose sniffer/interceptor/logger for switched LAN
• Etherape – Graphical network monitor
• Bleachbit – Delete unnecessary files from the system
• Wipe – Secure file deletion
• Scrub – Writes patterns on magnetic media to thwart data recovery
• Rkhunter – Rootkit, backdoor, sniffer and exploit scanner
• Lynis – Security auditing tool for Unix based systems
• Proxychains – Redirect connections through proxy servers
• Tsocks – Transparent network access through a SOCKS 4 or 5 proxy
• Privoxy – Privacy enhancing HTTP Proxy
• I2P – Anonymizing network, offering a simple layer that identity-sensitive applications can use to securely communicate
• Tor – Anonymizing overlay network for TCP
• Vidalia – Controller GUI for Tor
• Torsocks – Use socks-friendly applications with Tor
• Tor-Arm – Terminal status monitor for Tor
• Torchat – Decentralized instant messenger built on top of the Tor Network
• Arkose – Desktop application sandboxing

A hardened Linux desktop for use in Digital Forensics-Incident Response (DFIR) and Vulnerability Assessments. Mandragora leverages AppArmor security profiles and auditing, LXC Container Sandboxing (Arkose) and Tor and I2P for enhanced privacy.

You can find out more about this innovative project at the Mandragora Linux site.