[email protected] writes: > Has anyone any ideas of good and small testings tools for IDS? > I have to test a IDS-System and I am looking for a small programm > which is able to test all kind of possible Intrusions. > Thanks for your help.
sneeze, scapy, and there was some other newer one that came out in the past few months in this space that come to mind. Sneeze reads in snort rules and generates traffic to match them. http://www.securiteam.com/tools/5DP0T0AB5G.html Whether such things are a good test of IDS effectiveness though... and whether you can possibly test "all kind of possible intrusions" if of course ripe for debate. However, it'll certainly convince you that the IDS system is working (as well as what an "IDS blinding" attack would look like). The customary minute of googling on some terms that popped to mind led me to this page which seems pretty informative. http://jessland.net/JISK/IDS_IPS/Network/Testing.php and http://searchsecuritychannel.techtarget.com/tip/0,289483,sid97_gci1266313,00.html -- Todd Haverkos http://www.haverkos.com/ ----------------------------------------------------------------- Securing Your Online Data Transfer with SSL. A guide to understanding SSL certificates, how they operate and their application. By making use of an SSL certificate on your web server, you can securely collect sensitive information online, and increase business by giving your customers confidence that their transactions are safe. http://www.dinclinx.com/Redirect.aspx?36;5001;25;1371;0;1;946;9a80e04e1a17f194
