"The Codenomicon tools are amazing. Using them is like being attacked by the most relentless adversary who uses every possible method to find flaws in your code
We fixed subtle crash bugs in Samba that had been in the code for over ten years. We would never have found those bugs without the Codenomicon tools.
If you're serious about implementing protocols correctly, you need the Codenomicon tools."
-- Jeremy Allison,
Co Creator of Samba
Defensics™
Overview | History | Features in Detail | Screenshots
Features in detail
Proven test methodology and technology >
Scalable, prebuilt test cases >
Complete and comprehensive documentation >
Accurate, actionable reports >
Immediate reproduction and regression >
Broadest protocol coverage
Ensure the security and robustness of your implementation quickly, easily and with confidence. Defensics uniquely covers over 200 protocols and file formats – enabling testing of systems from the link-level communications all the way up to application protocol. Beyond supporting most network protocols, the coverage extends to digital media and wireless infrastructures. The extensive suite coverage provides users with intelligent negative testing and maintained RFC coverage – identifying known and new vulnerabilities and hidden flaws in your current systems today, and as your protocol implementation requirements evolve.
Proven test methodology and technology
Thoroughly test protocol implementations to mitigate unknown and published vulnerabilities. Beyond simple robustness test tools that mutate around known vulnerabilities, trivial message sequences or random anomalization, Codenomicon provides full model-based testing with the deepest possible coverage for each tested protocol. Defensics dynamically creates attack simulations to intelligently test a more extensive input space – at specific field, structural and message sequence levels most susceptible to fault, failure and security exposure. The net result is the identification of zero-day threats and new exposures in even the most hardened and complex protocol implementations.
Scalable, prebuilt test cases
Built-in expertise and automated test case execution facilitate testing, no manual test case creation effort or testing experience is needed. Select what anomalies are used, and how many of them are used to create new test cases up to tens of millions. Combine the cases to create multiple anomaly messages from the single-anomaly test cases. This takes the test space to hundreds of millions, even billions of test cases. For busy users, a small but broad set of tests can be useful. For those with more testing time available, coverage can be made as thorough as possible. With the unlimited test cases setting, testing can go on virtually forever.
Test Case Editing
With Defensics, test case editing is easy as possible. While the pre-built test cases have been created to be more than sufficient for most users, sometimes there may be a need to edit test cases to meet specific needs. Defensics enables for example testing certain custom protocol structures or adding new test cases.
Fast, automated test runs
Defensics utilizes protocol specifications to create intelligent model-based test cases that target protocol areas most susceptible to vulnerabilities. By targeting the test cases, the number of test cases needed can be significantly reduced without compromising coverage. This makes the whole testing process quicker and more cost efficient.
Complete and comprehensive documentation
Detailed, online documentation expedites problem resolution. Defensics comes with detailed documentation for each test case to help you remediate flaws discovered from the systems under test.
Share online detailed test case material and results within your organization. The reports have direct links to test cases identifying specific problems making all identified flaws easily repeatable and traceable.
Accurate, actionable reports
Reporting is an important feature of any test tool. Defensics provides accurate information about the message sequences and data causing the problem. The severity and impact of a flaw can be analyzed with the help of industry standard CVSS and CWE scoring systems. Built-in support for comparing results and trends from multiple test runs provides an overall view on how the security and robustness of the tested system develops and evolves over time. Remediation packages that contain detailed information about found vulnerabilities can be generated for developers and vendors easily and effortlessly.
Immediate reproduction and regression
Identified flaws are absolutely repeatable and traceable. Defensics users from quality assurance and security analysts to engineering can remotely access the same system and reproduce any identified flaws. Users have fully integrated documentation, the exact test case construct and input context to determine the root cause of the defect. This negates problems where bug reproduction needs identical test environments, which can be an issue for externalized test applets. The immediate failure reproduction facilitates prompt reaction and fix verification.
Automatic Updates
Download and install updates to all Defensics test suites automatically and effortlessly. Upon startup of the Defensics GUI, the user is notified of all the new and updated test suites included in the license. For test workstations not connected to the Internet, separate download from Codenomicon Download Arena and offline installation is of course still possible
Software flexibility
Defensics is a test solution that supports mobile use, multi-location use and immediate access. It on popular OS’s and nominal hardware – even on a laptop. As a software-only platform, Defensics can be easily integrated into your existing software development and testing processes. The software supports remote users, multiple sites, multiple protocols, external audits and third party license management systems. By making the system accessible to different teams and users, organizations can increase usage and optimize resources while reducing expert staff utilization as well as extra travel and preparation costs.
Intuitive and extensible
An easy to use test solution with easy-to-interpret results. Users get up-to-speed and are effective with Defensics quickly with access to fully indexed, well-described test cases and configuration options all within an intuitive interface. Users can observe tests in action or review detailed test results linked to test case documentation. The platform has a complete command-line interface and supports third party tools and scripts. The system can interface with external instrumentation and monitors within defined test condition triggers. All test results are presented in a standard format that can be conveniently incorporated within existing reporting processes and systems. The Defensics platform yields accelerated time-to-value.
Defensics GUI
Clear and Logical Defensics User Interface will guide you through every step of the testing process. The control of multiple test suites and test reports are centralized under a single unified user interface. Once you are familiarized yourself with the setup process you have the option to skip steps you don't need.
XML Anomalization Engine
XML is an ever more pervasive way of communication, used both in standard and custom application-to-application protocols. Defensics offers XML protocol testing capabilities for both standard protocols like XMPP and proprietary protocols used in many organizations.
PCAP I/O
Defensics allows the user to capture all test traffic automatically in the industry-standard PCAP packet capture format for later analysis or reuse. Using a commonly understood format allows testers to make test data easily available for developers or even third parties, aiding in fault reproduction, upstream problem reporting and subsequent fixing of any found flaws.
Traffic Capture Fuzzing
Traffic Capture Fuzzer test suite, part of the Defensics platform, enables users to generate quick fuzzing tests for any protocols using PCAP files. See Traffic Capture Fuzzing for more information on this feature.
Quality and security test best practices
Don’t let tools dictate your processes. The Defensics test platform is designed to integrate into your software development and system deployment test processes. The software-based test solution can be fully controlled within third-party test harnesses and supports a robust command interface. The standard reports and pinpoint regression test capabilities allow for dependable test baselines, trending and continuous security and quality improvement. Defensics delivers a cost-effective and efficient means for product acceptance and secure development lifecycle management.
