IDS mailing list archives

RE: Remote IDS Testing

From: "Cojocea, Mike (IST)" <Mike.Cojocea () watsonwyatt com>
Date: Mon, 28 Nov 2005 12:14:06 -0500

If you want to "replay" pcap traffic captures through the IDS this is
pretty good tool:
http://tcpreplay.sourceforge.net/

With it you can reply pcap traffic at arbitrary speeds.

Thanks,
Mike

-----Original Message-----
From: Lachlan Bowes [mailto:lachlan () silknetworks com] 
Sent: November 27, 2005 3:07 AM
To: just1coder
Cc: focus-ids () securityfocus com
Subject: Re: Remote IDS Testing


There are many open source vulnerability scanners out there. Nessus is
one of the more popular and its very easy to use.

If you're looking for a way to test if your IDS then running scans on
your ip block with nessus should trigger plenty of alerts.

There are plenty of open source pen testing tools available.
www.insecure.org/tools.html to list a few.

Regards,
        Lachlan


On Thu, 2005-11-24 at 11:47 -0500, just1coder wrote:

Could someone point me to a few remote IDS testing locations? I would
like to have my IP block scanned by a third party tool / application

for

vulnerabilities. Any downloadable tools too would be great.

----------------------------------------------------------------------
--
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to

http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708

to learn more.

------------------------------------------------------------------------



------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it 
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708

to learn more.
------------------------------------------------------------------------


------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it
with real-world attacks from CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
------------------------------------------------------------------------

Current thread:

RE: Remote IDS Testing Cojocea, Mike (IST) (Dec 01)
- <Possible follow-ups>
- Re: Remote IDS Testing Murali Raju (Dec 02)
- Re: RE: Remote IDS Testing vulnerabilty (Dec 05)
- RE: Remote IDS Testing Schupp, Hank (Dec 16)
  - Re: Remote IDS Testing ADT (Dec 18)
- Re: Re: Remote IDS Testing manuscity (Dec 21)