DEFENSICS Test Suite Packages
DEFENSICS test suites have been packaged into product bundles that cover the quality assurance and security readiness testing requirements of customers across several vertical markets.
| Core Internet > | Network Management > | |
| Routing > | Remote Access > | |
| VPN > | VoIP > | |
| 3G/4G LTE > | Digital Media > | |
| Email > | Bluetooth > | |
| WLAN > | File Systems and Storage > | |
| Industrial Automation > | Link Management > |
Core Internet
Codenomicon Defensics Core Internet package helps software developers, testers and administrators to search and pre-emptively eliminate security-related flaws from the implementations that create the backbone of the modern Internet and communication between the networked devices. The list includes, but is not limited to, routers, switches, firewalls, desktop and server systems, laptops, PDAs, cell phones and other mobile systems, as well as a large number of various embedded systems. Because several protocols from this category are often tightly coupled with the underlying operating system, serious flaws in handling them may easily result in total system compromises.
IPv4 (TCP, UDP, IPv4, ICMP, IGMP, ARP), IPv6 (TCP, UDP, IPv6, ICMPv6), DNS Server, DNS Client, DNS Zone Transfer, NTP (Client, Server), DHCP/BOOTP Client, DHCP/BOOTP Server, HTTP Server, HTTP Client, FTP Server, FTP Client, DHCPv6 Client, DHCPv6 Server
Net Management
Remote management of networked devices is one of the areas where security, dependability and reliability are crucial. Defensics Remote Management package helps ensure the implementation level security of the protocols that are used for observing, controlling and managing remote networked devices over the Internet. Back in 2002 vulnerabilities in SNMP protocol caused wide-spread industry impact. Defensics Remote Management package includes SNMP tests, among other protocols, for pre-emptively eliminating similar vulnerabilities from the systems deployed today.
HTTP Server, HTTP Client, TLS/SSL Server, TLS/SSL Client, Telnet Server, SSH1 Server, SSH2 Server, SNMPv1/v2 Server, SNMPv3 Server, TFTP Server, UPnP Server
Routing
Routing services in modern networks are extremely availability-critical as they often constitute a weak point for the network communications of any organization. If routing service is disrupted, all the higher-level protocols grind to a halt. Defensics Routing package has been designed to discover and help eradicate security-related flaws from the implementations of the routing protocols. This test suite package addresses the security of the critical routing protocols, such as BGP, that, if found vulnerable, may result in large portions of the Internet to be rendered completely inaccessible.
IS-IS, DVMRP, GRE, OSPFv2, OSPFv3, PIM-SM/DM, RSVP, VRRP, BGP4, RIP, RIPng, MPLS/LDP
Remote Access
Defensics Remote Access package is designed for ensuring the security and robustness of the availability-critical AAA (Authentication, Authorization and Accounting) services and protocols that are widely deployed in both fixed and mobile modern networks. Typical protocols in this category are RADIUS and Diameter, which are intended as protocols for centralized AAA services. Despite the advantages, the use of centralized AAA services often constitutes a single point of failure and can result in undesired downtime and denial-of-service conditions, rendering entire networks inaccessible to their customers. Pre-emptive testing with Defensics Remote Access protocols helps in eliminating these threats.
EAPOL Server, PPPoE, Diameter Server, Diameter Client, LDAPv3 Server, TACACS+ Server, TACACS+ NAS, RADIUS (Server, Client), Kerberos Server
VPN
Modern organizations are increasingly spread out geographically and there is a need to provide efficient remote access methods to the company's information systems. Virtual Private Networks (VPN) are usually used for this purpose. As attractive as VPNs may be, they are also a big security challenge. VPNs are often used for accessing the services of internal network, which means that the data carried by VPNs can be highly sensitive. The protocols comprising typical VPN implementations are many and complex, giving a lot of opportunities for the implementation errors. Pre-emptive testing with the Defensics VPN package helps in dramatically decreasing the possibility of breach by malicious attacks using malformatted input.
IPSec, SSH1 Server, SSH2 Server, TLS/SSL Server, TLS/SSL Client, ISAKMP/IKEv1 Server, ISAKMP/IKEv1 Client, IKEv2
VoIP
Telecommunications services are usually both ubiquitous and availability-critical. Any flaws in fixed or mobile telecommunications protocol implementations can lead to widespread service disruptions. With Defensics VoIP package customers can pre-emptively eliminate robustness flaws from critical VoIP infrastructure and devices. Protocols like SIP and RTP are rapidly becoming fundamental building blocks of IP-based telephony. Because of this, the implementations must meet the challenges and threats posed by an all-IP environment. The dependability of a VoIP network and its devices should be no less than that of the traditional PSTN.
SCTP, H.248, H.323, RTSP Server, RTSP Client, TLS/SSL Server, TLS/SSL Client, SIP UAS, SIP UAC, SigComp, RTP/RTCP/SRTP, MGCP, UPnP Server
3G/4G LTE
Defensics 3G package addesses the security and robustness of the 2.5G and 3G core networks. The most critical devices in the network, including GGSNs, SGSNs, RNCs and charging gateways converse using GTP, for which the tests are included in Defensics 3G package. The devices are tested through standard interfaces, including Gn and Gp. Additionally, Defensics 3G package includes tests for various other protocols in 3G environment, including LDAP, which is used in accessing and storing security critical information such as user authentication data and IT management information. Defensics 3G protocol test suites constitute an essential toolkit for anyone who develops or depends on the robust functioning of 2.5G and 3G networks.
SCTP, GRE, IPSec, Diameter Server, Diameter Client, LDAP Server, TLS/SSL Server, TLS/SSL Client, SIP UAS, SIP UAC, GTPv1, GTPv0, RADIUS (Server, Client)
Digital Media
Internet is full of funny videos and images, but sometimes digital media can be deadly for the devices processing it. Anomalously crafted digital media, such as audio, video and images can be used for attacking a device and creating denial of service condition and exploits similarly to protocol attacks. Defensics Digital Media is a unique security and robustness testing solution that takes into account this attack vector that is too often ignored by the other test solutions.
Audio (AIFF, AU, AMR, IMY, MP3, VOC, WAV)
Image (BMP, GIF, JPEG, MBM, PCX, PNG, PIX, PNM, RAS, TIFF, WBMP, XBM, XPM, WMF)
Video (AVI, Quicktime, MPG1, MPG2, MPEG4)
Archive (ZIP, CAB, LHA, GZIP)
Due to its ubiquitousness, the modern society has come to depend on email and the availability of email services. This places high requirements for the quality of email protocol implementations, so that services are not disrupted by malformed data and malicious attacks. Defensics E-mail protocol package has been developed for testing the e-mail service implementations for current and future security flaws and robustness problems. The package includes test suites for fundamental protocols in e-mail exchange, POP3, IMAP4 and SMTP.
POP3 Client, POP3 Server, IMAP4 Client, IMAP4 Server, SMTP Client, SMTP Server
Bluetooth
Bluetooth is often thought to be separate from the security critical systems, but that is a dangerous assumption. Consider, for example, a smartphone or PDA, Bluetooth enabled cars or medical devices. A security breach with these may lead to significan financial loss or even in the loss of life. A practical testing of 31 Bluetooth enabled devices in mid-2006 revealed less than 10% survival rate when subjected to Defensics Bluetooth robustness testing solution. Defensics Bluetooth package represents the testing solution of choice for all quality and security-minded vendors.
WLAN
Wi-Fi is one of the technologies where the adoption rate has skyrocketed and has truly changed the way we access information systems, making it increasingly location independent. Unfortunately, new technology and new usage models also bring in the new security challenges and we've already seen a number of Wi-Fi vunerabilities out in the open. In the wireless world, anything can be attacked, anyone can attack and an attacker can remain anonymous. Defensics Wi-Fi protocol package is the solution of choice for anyone wishing to ensure the security and robustness of Wi-Fi Access Points and Wi-Fi enabled client devices.
802.11 Access Point (AP), 802.11 Client, WPA1 / WPA2 Client, WPA1 / WPA2 AP
Link Management
Defensics Link Management protocol package addresses the security and robustness of fundamental Layer 2 protocols. Pre-emptive testing of the STP/RSTP/MSTP and LACP implementations in network nodes and switches ensures interruption-free service and helps avoiding the costs caused by possible downtime.
File Systems/StorageRecent years have seen a steady trend towards networked data storing with Storage Area Networks (SAN) and Network Attached Storage (NAS). Traditionally, SAN systems have been isolated islands but have lately been opening up to public IP networks and moving from Fibre Channel to ethernet based iSCSI. This opens up an unprecedented amount of potential attack vectors to SAN/NAS systems that have been originally designed for high capacity and performance, with security being just an afterthought. Defensics Filesystems & Storage solution enables organizations to defend against SAN/NAS attacks and protect their critical corporate data.
Industrial Automation (SCADA/DCS)
Industrial Automation systems collect data and control processes using SCADA (supervisory control and data acquisition) systems and DCS. SCADA/DCS needs to transfer data and send control commands reliably over a potentially slow, unreliable communications medium. Any problems in the communications can have significant results. SCADA fuzzing will simulate failures proactively in order to repair them before damages occur.
Follow us on:
