Penetration Testing mailing list archives
RE: IDS evasion && testing
From: "Martin Vine" <martin () vinem fsworld co uk>
Date: Mon, 8 Apr 2002 20:16:55 +0100
I use IDS Informer for testing NIDS & HIDS, there is some useful stuff on their site. You can grab an eval from www.blade-software.com Cheers Martin -----Original Message----- From: Bojan Zdrnja [mailto:Bojan.Zdrnja () FER hr] Sent: 08 April 2002 11:17 To: 'ph00dy'; pen-test () securityfocus com Subject: RE: IDS evasion && testing I'd also recommend you to read RFP's very good paper: A look at whisker's anti-IDS tactics. You can find it on his site, http://www.wiretrip.net/rfp/pages/whitepapers/whiskerids.html Best regards, Bojan Zdrnja
-----Original Message----- From: ph00dy [mailto:ph00dy () covesoft net] Sent: 5. travanj 2002 0:23 To: pen-test () securityfocus com Subject: IDS evasion && testing Hey *, I am looking for good information on defeating/testing NIDS. I have tryed some "alert overflowing", and sending some attacks/scans very slowly to see what the results are, but I imagine there is someone who has done more of this sort of testing that knows something I don't. Any experience, Ideas, papers etc.. would be helpful. Thanks.. ph00dy -------------------------------------------------------------- -------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/ ---------------------------------------------------------------------------- This list is provided by the SecurityFocus Security Intelligence Alert (SIA) Service. For more information on SecurityFocus' SIA service which automatically alerts you to the latest security vulnerabilities please see: https://alerts.securityfocus.com/
Current thread:
- IDS evasion && testing ph00dy (Apr 06)
- Re: IDS evasion && testing Marco de Vivo [UCV] (Apr 07)
- RE: IDS evasion && testing Bojan Zdrnja (Apr 08)
- RE: IDS evasion && testing ET LoWNOISE (Apr 09)
- RE: IDS evasion && testing Martin Vine (Apr 09)
- <Possible follow-ups>
- RE: IDS evasion && testing Osborne-1, Brett (Apr 07)
- Re: IDS evasion && testing Renaud Deraison (Apr 08)
- Re: IDS evasion && testing Dario N. Ciccarone (Apr 09)
- Re: IDS evasion && testing Andrea Barisani (Apr 10)
- Re: IDS evasion && testing Renaud Deraison (Apr 08)
- RE: IDS evasion && testing Hornat, Charles (Apr 09)