Products by Protocol
Codenomicon TCP Test Tool for IPv4 Data Sheet
- Test tool: Codenomicon TCP Test Tool for IPv4
- Direction: Server
- Tagline: Dependability and Reliability for the Internet
Codenomicon IPv4 Test Tools help software developers, testers and administrators search and eliminate security-related flaws in Internet Protocol Version 4 (IPv4) implementations proactively and cost-effectively. Early elimination of bugs with security implications greatly reduces costs later on in the software lifecycle. Proactive testing improves the quality and reliability of your software and help promote customer trust.
Estimates show that up to 800-900 million people depend on IPv4 for their daily communications needs. Since the inception of the Internet, IPv4 has assumed an unprecedented importance in the global scale. IPv4 implementations are found in almost all modern computer systems. This includes routers, switches, firewalls, desktop and server systems, laptops, PDAs, cell phones and other mobile systems, as well as a large number of various embedded systems. All of these devices are vulnerable to exploitation through externally-supplied malformed protocol data. Effects of malicious data range from transient parsing errors to complete system takeovers. As IPv4 and its associated protocols (TCP, UDP, ICMP, IGMP, ARP) are in an extremely crucial role in modern society, the dependability and reliability of IPv4 implementations must be verified. IPv4 implementations are often tightly coupled with the underlying operating system, which means that serious flaws in IPv4 protocol handling may easily result in total system compromises. Codenomicon IPv4 Test Tools help prevent this by making IPv4 implementations more robust. Codenomicon IPv4 Test Tools are sold in a bundle, with separate test tools for ARP, TCP, UDP, ICMP, IGMP and core IPv4.
Used specifications
| Specification | Title |
|---|---|
| RFC793 | Transmission Control Protocol - DARPA Internet Program |
| RFC1072 | TCP Extensions for Long-Delay Paths |
| RFC1146 | TCP Alternate Checksum Options |
| RFC1323 | TCP Extensions for High Performance |
| RFC1644 | T/TCP -- TCP Extensions for Transactions - Functional Specification |
| RFC1693 | An Extension to TCP : Partial Order Service |
| RFC2018 | TCP Selective Acknowledgment Options |
| RFC2385 | Protection of BGP Sessions via the TCP MD5 Signature Option |
| RFC2883 | An Extension to the Selective Acknowledgement (SACK) Option for TCP |
Test tool general features
- Fully automated black-box negative testing
- Ready-made test cases
- Written in Java(tm)
- GUI, command line, remote interface modes
- Instrumentation (health-check) capability
- Support and maintenance
- Comprehensive user documentation
- Results reporting and analysis
Tool-specific information
| Tested TCP Options | Notes | Specifications |
|---|---|---|
| End of Option List | RFC793 | |
| No Operation | RFC793 | |
| Maximum Segment Size | RFC793 | |
| Window-Scale-Option | RFC | |
| SACK-Permitted | RFC | |
| Selective-Acknowledgment | RFC | |
| Echo | RFC | |
| Echo-Reply | RFC | |
| Timestamp | RFC | |
| Partial-Order-Connection-Permitted | RFC | |
| Partial-Order-Service-Profile | RFC | |
| Connection-Count | RFC | |
| Connection-Count-New | RFC | |
| Connection-Count-Echo | RFC | |
| TCP-Alternate-Checksum-Request | RFC | |
| TCP-Alternate-Checksum-Data | RFC | |
| Skeeter | RFC | |
| Bubba | RFC | |
| Trailer-Checksum-Option | RFC | |
| MD5-Signature | RFC | |
| SCPS-Capabilities | RFC | |
| Selective-Negative-Acknowledgements | RFC | |
| Record-Boundaries | RFC | |
| Corruption-Experienced | RFC | |
| SNAP | RFC | |
| TCP-Compression-Filter | RFC | Tested known TCP vulnerabilities | Description |
| WinNuke | OOB bug - TCP urgent pointer is set (to end of data) and (some) data is sent to netbios (139) port | |
| Land | A spoofed packet with the SYN flag set is sent to an open port (such as 113 or 139) while setting the target host/port as source host/port | |
| SynDrop | A mix of Land and teardrop/bonk attacks | |
| LaTierra | Modification of Land attack |
This page lists the test tool data sheets available for sales and support. Please note that the information in these sheets is subject to periodical change.
Test Tool Datasheet: