Here is a list of known useful third-party tools and add-ons that are not included in the main distribution.
It is similar to mod_rewrite module of Apache HTTPD server.
SecurityFilter is a Filter that mimics container managed security.
Apache Shiro is a Java security framework that performs authentication, authorization, cryptography, and session management. It can be configured as a Filter to secure a web application.
Spring Security is a powerful and highly customizable authentication and access-control framework. It is usually used with Spring Framework. In simple configuration it may be used as a filter to perform both authentication and authorization. It also can be used to perform authorization control at business methods of an application, and to implement domain object security.
OrientDBRealm - Realms for Tomcat 6 and 7 that connect to an OrientDB
PSI Probe manager application
psi-probe is advanced manager and monitor web application for Apache Tomcat.
(It is a fork that continues development of the Lambda Probe application. The original Lambda Probe project is no more active since year 2006).