"The Codenomicon tools are amazing. Using them is like being attacked by the most relentless adversary who uses every possible method to find flaws in your code
We fixed subtle crash bugs in Samba that had been in the code for over ten years. We would never have found those bugs without the Codenomicon tools.
If you're serious about implementing protocols correctly, you need the Codenomicon tools."
-- Jeremy Allison,
Co Creator of Samba
Products by Protocol
Codenomicon TACACS+ NAS Test Tool Data Sheet
- Test tool: Codenomicon TACACS+ NAS Test Tool
- Direction: Client
TACACS+ is an access control protocol for routers, network access servers and other networked computers. TACACS+ provides means for the common tasks of authentication, authorization and accounting (AAA). It is an old and venerable protocol, with roots extending all the way to the ARPANET era. Since its previous incarnations, TACACS+ has been considerably modified and extended to better suit modern AAA purposes. The Codenomicon TACACS+ NAS Test Tool is intended to scourge TACACS+ NAS (Network Access Server) implementations for security-related robustness flaws, thus improving overall software quality and reliability.
Used specifications
| Specification | Title |
|---|---|
| RFCdraft-tacacs-02 | Protocol specification for TACACS+ |
Test tool general features
- Fully automated black-box negative testing
- Ready-made test cases
- Written in Java(tm)
- GUI, command line, remote interface modes
- Instrumentation (health-check) capability
- Support and maintenance
- Comprehensive user documentation
- Results reporting and analysis
Tool-specific information
| Tested messages | Notes | Specifications |
|---|---|---|
| Authentication Reply | draft-tacacs | |
| Authorization Reply | draft-tacacs | |
| Accounting Reply | draft-tacacs | Supported protocol features | Notes | Specifications |
| TACACS+ plaintext packets | draft-tacacs | |
| TACACS+ encryption | draft-tacacs | |
| TACACS+ arguments tested | service, protocol, cmd, cmd-arg, acl, inacl, outacl, zonelist, addr, addr-pool, routing, route, timeout, idletime, autocmd, noescape, nohangup, priv_lvl, remote_user, remote_host, callback-dialstring, callback-rotary, task_id, start_time, stop_time, elapsed_time, timezone, event, reason, bytes, bytes_in, bytes_out, paks, paks_in, paks_out, status, err_msg, callback-line, nocallback-verify | draft-tacacs | Supported TACACS+ transports | Notes | Specifications |
| TCP | RFC3261 |
Select Protocol:
List of available test suites. Please note that the information in these sheets is subject to periodical change.
Test Tool Datasheet:
Contact Us:
Contact us for more information