Re: IDS Testing
From: Johannes B. Ullrich (jullrich@euclidian.com)Date: 10/25/01
- Previous message: Andrew R. Reiter: "Re: IDS Testing"
- In reply to: Mike Barrimore: "IDS Testing"
- Next in thread: Estis, Kevin A.: "RE: IDS Testing"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 25 Oct 2001 17:41:25 -0400 (EDT) From: "Johannes B. Ullrich" <jullrich@euclidian.com> To: Mike Barrimore <mikeybarrimore@hotmail.com> Subject: Re: IDS Testing Message-ID: <Pine.LNX.4.33.0110251738120.8020-100000@johannes.euclidian.com>
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
> I have been running network ids for a while now and I keep getting asked the
> question by my boss, more recently after the 11th Sept, how do you know that
> it is working as it should be. Other than downloading all of the attacks and
> running them I'm not really sure.
>
> Is there any easy to run apps that anyone can recommend? I just need to
> prove that it is doing what we think it is doing.
Take a look at Nessus (www.nessus.org). It is a basic vulnerability
scanner with a large library of tests for various vulnerabilities and nice
reporting. There are also some companies that will do these tests for you
(expect to pay a good junk of money for a good test).
The nice thing about nessus is that its plugins are usually up to date, it
is free, and it is not all that hard to install.
- --
- -------
jullrich@sans.org Join http://www.DShield.org
Distributed Intrusion Detection System
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE72IcHVOIizK5pIDMRAv5XAJ953eN7xGCSNuwYMYAfpYhBQQf28QCg5/er
Tf+LKvLS+HbbA09/V7JU3Gk=
=2okS
-----END PGP SIGNATURE-----
- Previous message: Andrew R. Reiter: "Re: IDS Testing"
- In reply to: Mike Barrimore: "IDS Testing"
- Next in thread: Estis, Kevin A.: "RE: IDS Testing"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
