Re: IDS Evaluation

From: sam f. stover (sstover_at_atrc.tsgi.us)
Date: 03/29/05

  • Next message: David W. Goodrum: "Re: IDS Evaluation"
    Date: Mon, 28 Mar 2005 17:45:18 -0500
    To: focus-ids@securityfocus.com
    
    

    On Mar 28, 2005, at 12:33 PM, Ron Gula wrote:

    > However, when you run vuln scanners against an IDS, you only really
    > test how an IDS detects vuln scanning. You should also add into you
    > test suite tools which conduct active exploitation.

    It's been said before, but I'll say it again. Metasploit is a great
    tool to use precisely for this purpose:

    http://www.metasploit.com/index.html

    Not that there aren't others...

    --
    S.f. Stover
    sstover@atrc.sytexinc.com
    Mind the gap.
    -- English proverb
    --------------------------------------------------------------------------
    Test Your IDS
    Is your IDS deployed correctly?
    Find out quickly and easily by testing it with real-world attacks from 
    CORE IMPACT.
    Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 
    to learn more.
    --------------------------------------------------------------------------
    

  • Next message: David W. Goodrum: "Re: IDS Evaluation"