[Full-Disclosure] Pentesting an IDP-System

• Previous message: Gadi Evron: "[Full-Disclosure] An anatomy of a PGP Joe Job"
• Next in thread: Oliver_at_greyhat.de: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: Oliver_at_greyhat.de: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: Marcin Owsiany: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: H D Moore: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: Darren Bounds: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: ph03n1x: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: Full-Disclosure <full-disclosure@lists.netsys.com>
Date: Sat, 29 May 2004 13:03:42 +0200

Hello

I'm kinda new to this list and this is my first post so be nice to me :)

Well I got an Intrusion Detection and Prevention System from a quite
famous company which they lend me for betatesting. I already compiled a
few exploits to test and it detected them quite reliable. (Didnt detect
the exploit but detected the shellcode)

Do you guys have an idea how i could test it more efficiently, is there
some software that automatically tries to attack with a bunch of the
most common and new exploits so i dont have to do it manually?
Preferably some GPL or other "free" stuff since i dont have a budget for
this.

What are the must criterias for an IDP would appreciate any links or
papers.

thx for tips

ph

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

• Previous message: Gadi Evron: "[Full-Disclosure] An anatomy of a PGP Joe Job"
• Next in thread: Oliver_at_greyhat.de: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: Oliver_at_greyhat.de: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: Marcin Owsiany: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: H D Moore: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: Darren Bounds: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Reply: ph03n1x: "Re: [Full-Disclosure] Pentesting an IDP-System"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: [Full-Disclosure] Pentesting an IDP-System ... > Well I got an Intrusion Detection and Prevention System from a quite ... > Preferably some GPL or other "free" stuff since i dont have a budget ... > Full-Disclosure - We believe in it. ... > Charter: http://lists.netsys.com/full-disclosure-charter.html ... (Full-Disclosure) Re: True definition of Intrusion Prevention ... >Prevention versus Network Intrusion Detection, ... to be monitoring the integrity of the host's operation. ... (Focus-IDS) re: windows 2000 Intrustion Detection ... even to the point of installing ... So, I'd recommend prevent first, then detection. ... Do You Yahoo!? ... (Security-Basics) Re: Intrusion Prevention ... > approach to IDS technologies and provides a number of advantages over ... > other detection systems, such as proactively detecting reconnaissance ... 100% no false positives, 'proactive' intrusion detection, intrusion ... (Focus-IDS) Re: windows restriction is blocking my intrusion detection from turnin ... h4xor wrote: ... > able to be turned on and get the same message saying that it has ... ok i tried installing the update for the intrusion detection and once ... (microsoft.public.windowsxp.help_and_support)