Re: IDS Evaluation
From: sam f. stover (sstover_at_atrc.tsgi.us)
Date: 03/29/05
- Previous message: Ofer Shezaf: "RE: IDS/IPS Management devices"
- In reply to: Ron Gula: "Re: IDS Evaluation"
- Next in thread: Raffael Marty: "Re: IDS Evaluation"
- Reply: Raffael Marty: "Re: IDS Evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 28 Mar 2005 17:45:18 -0500 To: focus-ids@securityfocus.com
On Mar 28, 2005, at 12:33 PM, Ron Gula wrote:
> However, when you run vuln scanners against an IDS, you only really
> test how an IDS detects vuln scanning. You should also add into you
> test suite tools which conduct active exploitation.
It's been said before, but I'll say it again. Metasploit is a great
tool to use precisely for this purpose:
http://www.metasploit.com/index.html
Not that there aren't others...
-- S.f. Stover sstover@atrc.sytexinc.com Mind the gap. -- English proverb -------------------------------------------------------------------------- Test Your IDS Is your IDS deployed correctly? Find out quickly and easily by testing it with real-world attacks from CORE IMPACT. Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708 to learn more. --------------------------------------------------------------------------
- Previous message: Ofer Shezaf: "RE: IDS/IPS Management devices"
- In reply to: Ron Gula: "Re: IDS Evaluation"
- Next in thread: Raffael Marty: "Re: IDS Evaluation"
- Reply: Raffael Marty: "Re: IDS Evaluation"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
