Detox is a program that renames files to make them easier to work with under Unix and related operating systems. Spaces and various other unsafe characters (such as "$") get replaced with "_". ISO 8859-1 (Latin-1) characters can be replaced as well, as can UTF-8 characters.

libpcap is an interface for user-level packet capture. It provides a portable framework for low-level network monitoring. Applications include network statistics collection, security monitoring, network debugging, etc.

Sysdig is a simple tool for deep system visibility, with native support for containers. It combines features of multiple system administration tools such as the strace, tcpdump, htop, iftop and lsof into a single interface. The novel architecture of the tool means that the performance impact of the tracing on the system is very light, compared to the likes of strace. The sysdig command has an interface similar to strace, while the csysdig command is better suited for interactive used, and has a user interface similar to htop.

If you use Guix System, the kernel Linux has BPF support, and you should launch this tool using the --modern-bpf argument of the sysdig or csysdig commands. The following Bash aliases can be added to your ~/.bash_profile file, for example:

alias sysdig=sudo sysdig --modern-bpf alias cysdig=sudo csysdig --modern-bpf

This package provides the /etc/services, /etc/protocols, and /etc/rpc files, which contain information about the IANA-assigned port, protocol, and ONC RPC numbers.

MASSCAN is an asynchronous TCP port scanner. It can detect open ports, and also complete the TCP connection and interact with the remote application, collecting the information received.

Inxi is a system information script that can display various things about your hardware and software to users in an IRC chatroom or support forum. It runs with the /exec command in most IRC clients.

Dool is a command line tool to monitor many aspects of your system: CPU, Memory, Network, Load Average, etc. It also includes a robust plug-in architecture to allow monitoring other system metrics.

Hosts is a command line program for managing /etc/hosts entries. On Guix System, /etc/hosts is managed from the system configuration; hosts only works when using the Guix package manager on a foreign distro. hosts works with existing hosts files and entries, providing commands to add, remove, comment, and search.

Fasd (pronounced similar to "fast") is a command-line productivity booster. Fasd offers quick access to files and directories for POSIX shells. It is inspired by tools like autojump, z, and v. Fasd keeps track of files and directories you have accessed so that you can quickly reference them in the command line.

Facter is a tool that gathers basic facts about nodes (systems) such as hardware details, network settings, OS type and version, and more. These facts can be collected on the command line with the facter command or via the facter Ruby library.

This package provides tools to manage clients of the Logitech Unifying Receiver.

This package provides a way to figure out which processes communicate with which other processes. It provides more usable versions of ps, top and pstree.

The libcap-ng library is intended to make programming with POSIX capabilities easier than the traditional libcap library. It includes utilities that can analyse all currently running applications and print out any capabilities and whether or not it has an open ended bounding set. The included utilities are designed to let admins and developers spot apps from various ways that may be running with too much privilege.

hostapd is a user-space daemon for WiFi access points and authentication servers. It implements IEEE 802.11 access point management, IEEE 802.1X/WPA/WPA2/EAP Authenticators, RADIUS client, EAP server, and RADIUS authentication server.

The GNU Shepherd is a daemon-managing daemon, meaning that it supervises the execution of system services, replacing similar functionality found in typical init systems. It provides dependency-handling through a convenient interface and is based on GNU Guile.

Simple script to suspend or hibernate your computer. It supports hooks before and after suspending.

Show graphs for 1 minute, 5 minute, 15 minute load averages on the console.

jc JSONifies the output of many CLI tools and file-types for easier parsing in scripts.

ClusterSSH controls a number of xterm windows via a single graphical console window to allow commands to be interactively run on multiple servers over ssh connections.

This is htop, an interactive process viewer. It is a text-mode application (for console or X terminals) and requires ncurses.

Bash screenshot information tool which can be used to generate those nifty terminal theme information and ASCII distribution logos in everyone's screenshots nowadays.

nettop is a traffic visualizer for the terminal that summarizes network bandwidth by process and remote host.

This package provides udev bindings for Python.

Fail2Ban scans log files like /var/log/auth.log and bans IP addresses conducting too many failed login attempts. It does this by updating system firewall rules to reject new connections from those IP addresses, for a configurable amount of time. Fail2Ban comes out-of-the-box ready to read many standard log files, such as those for sshd and Apache, and is easily configured to read any log file of your choosing, for any error you wish.

Though Fail2Ban is able to reduce the rate of incorrect authentication attempts, it cannot eliminate the risk presented by weak authentication. Set up services to use only two factor, or public/private authentication mechanisms if you really want to protect services.