Penetration Testing mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Firewall rulebase checking tool

From: anthony.cicalla () gmail com
Date: Tue, 17 Aug 2010 09:37:25 +0000
If you have access to the configs use rat and nipper, also Cyber-defense.org has the cisp_scanner, used also with the 
cisp_sniffer from the same group. Also 

http://packetstormsecurity.org/Firewalk is a network auditing tool that attempts to determine what transport protocols 
a given gateway will pass. Firewalk works by sending out TCP or UDP ...packetstormsecurity.org/UNIX/audit/firewalk/

Anthony Cicalla, 
CEH, CISSP, GSNA, SCTA
Sent via BlackBerry from T-Mobile

-----Original Message-----
From: Jirka Vejrazka <jirka.vejrazka () gmail com>
Sender: listbounce () securityfocus com
Date: Tue, 17 Aug 2010 09:40:22 
To: Tracy Reed<treed () copilotco com>
Cc: <pen-test () securityfocus com>
Subject: Re: Firewall rulebase checking tool


I googled "validate firewall rulsebase" and got this thread at the top
of the list. I'm surprised anyone was able to answer this question as
phrased.


  Well, apparently quite a few people managed to understand what I
meant despite the fact that it's new to Google ;-)

  Many thanks to all who responded! I'll take a look at all the
mentioned products, did not know many of them.

  Cheers

    Jirka

------------------------------------------------------------------------
This list is sponsored by: Information Assurance Certification Review Board

Prove to peers and potential employers without a doubt that you can actually do a proper penetration test. IACRB CPT 
and CEPT certs require a full practical examination in order to become certified. 

http://www.iacertification.org
------------------------------------------------------------------------
Previous By Date Next
Previous By Thread Next

Current thread: