Forget phishing for bank account passwords. The deepest threats to online security are the weaknesses in the fundamental protocols that run the Internet.


"Codenomicon has found a critical focus area which expands beyond web testing, where the XML industry has an opportunity to proactively assess the security holes contained in everyday services used by the general public. I would hope the industry warmly welcomes both the research results and an innovative testing solution to help diagnose the problems."

Prof. Howard A. Schmidt
former White House Cyber Security advisor & Codenomicon board member

DEFENSICS™ Traffic Capture Fuzzer   pdf

Introduction | Features | Benefits | Screenshots
Augment with Model Based Fuzzing | Test Solution

Benefits

Because Traffic Capture Fuzzers require almost zero involvement for test creation, it has significant benefits against model based tests:


» NO SPECIFICATION NEEDED: Traffic Captures can be used as a quick and easy solution to fuzz protocols for which there are no existing DEFENSICS test suites. No protocol specifications are needed, because the Fuzzers are created from captured messages. Traffic captures can also be used to expand models used to test proprietary protocols extensions with real network traffic data. The best testing results are achieved by combining the information gained from Traffic Captures with protocol specifications.

» SAVE MONEY BY TESTING EVEN EARLIER: You can gain time and save money through preemptive security and robustness testing. In general, the earlier you start testing, the cheaper it is to fix the flaws. DEFENSICS Traffic Capture Fuzzer enables you to test your applications, before any standards exist. A software based solution is the perfect add-on to a developer's toolkit.

» COMPLEMENTS EXISTING FUZZING SOLUTIONS: Traffic Capture Fuzzing alone is not a comprehensive testing method. However, it enables you to priorities your security testing efforts and to expand your existing Model-Based testing solutions with easy-to-deploy, general purpose Fuzzing solution. Traffic Capture Fuzzing can also be used as a low-priced starting point towards more comprehensive Fuzzing solutions.

» REPRESENTS REAL THREATS: Fuzzing is a very representative testing method; it enables testers to accurately simulate potential attacks, and to patch the found vulnerabilities, before somebody else finds them and exploits them. Essentially, Fuzzing is doing what the attackers do, but before them.

Codenomicon Network Analyzer

Codenomicon DEFENSICS™ 3.0 - Free evaluation

Sign up for our newsletter

Follow us on:

Twitter Facebook