"The Codenomicon tools are amazing. Using them is like being attacked by the most relentless adversary who uses every possible method to find flaws in your code

We fixed subtle crash bugs in Samba that had been in the code for over ten years. We would never have found those bugs without the Codenomicon tools.

If you're serious about implementing protocols correctly, you need the Codenomicon tools."

-- Jeremy Allison,
   Co Creator of Samba


Defensics Test Suite Packages

We have arranged Defensics test suites into different groups for various technologies. These compilations include typical protocols for each vertical market, and will help you select the perfect toolset for your security testing needs.

 

Internet core protocols >   Network Management >
Routing >   Remote Access >
VPN >   IMS and VoIP >
3G/4G LTE >   Digital Media >
Email >   Bluetooth >
Wi-Fi >   File Systems and Storage >
Industrial Automation >   Link Management >
Web applications >  

 


Internet core protocols

Codenomicon Defensics Internet Core Protocols package helps software developers, testers and administrators to search and pre-emptively eliminate security-related flaws from the implementations that create the backbone of the modern Internet and communication between the networked devices.

» More information

 

Including test suites for:

IPv4 (ARP Client, ARP Server, ICMP, IGMP, IPv4, TCP/IPv4 Client, TCP/IPv4 Server, UDP/IPv4), IPv6 (ICMPv6, IPv6, TCP/IPv6 Server, UDP/IPv6, Proxy MIPv6 Client, Proxy MIPv6 Server), DNS Server, DNS Client, NTP Server, NTP Client, DHCP/BOOTP Client, DHCP/BOOTP Server, HTTP Server, HTTP Client, FTP Server, FTP Client, DHCPv6 Client, DHCPv6 Server, IPSec, NetBIOS Server SCTP Client SCTP Server

<top>


Net Management

Remote management of networked devices is one of the areas where security, dependability and reliability are crucial. Defensics Remote Management package helps ensure the implementation level security of the protocols that are used for observing, controlling and managing remote networked devices over the Internet.

» More information

 

Including test suites for:

HTTP Server, HTTP Client, Web Applications SNMPv1/v2 Server, SNMPv3 Server, SNMP Trap, Telnet Server, SSH1 Server, SSH2 Server, XML-Soap Client XML Soap Server CWMP (TR-069) ACS, CWMP (TR-069) CPE, TLS/SSL Server, TLS/SSL Client, TLS1.2 Server, TLS1.2 Client, TFTP Server, UPnP Gena Server, UPnP Multicast Eventing, UPnP SOAP, UPnP SSDP Control Point, UPnP SSDP Device, Syslog Server, IPMI, OWAMP,

<top>


Routing

Routing services in modern networks are extremely availability-critical as they often constitute a weak point for the network communications of any organization. If routing service is disrupted, all the higher-level protocols grind to a halt. Defensics Routing package has been designed to discover and help eradicate security-related flaws from the implementations of the routing protocols.

» More information

 

Including test suites for:

BGP4 Server, BGP4 Client, VRRP OSPFv2, OSPFv3, GRE, LDP, DVMRPv1, DVMRPv3, IS-IS, NHRP, OpenFlow Controller, OpenFlow Switch, PIM-SM/DM, RIP, RIPng, RSVP, TRILL, MSDP, MPLS, L2TPv2/v3, MetroEthernet (BFD, CFM, E-LMI, Ethernet, GARP, PTP Client, PTP Server, LACP, LLDP, OAM, PBT/PBB-TE, Synchronous Ethernet)

<top>


Remote Access

The robustness, security and overall quality of remote access must be verified already at an early stage during the software lifecycle in order to save costs from retroactive patching. Defensics Remote Access package is designed for ensuring the security and robustness of the availability-critical AAA (Authentication, Authorization and Accounting) services and protocols that are widely deployed in both fixed and mobile modern networks.

» More information

 

Including test suites for:

Diameter Server, Diameter Client, LDAPv3 Client, LDAPv3 Server, RADIUS Client, RADIUS Server, EAPOL Server, PPPoE, TACACS+ Server, TACACS+ NAS, Kerberos Server

<top>


VPN

The protocols comprising typical VPN implementations are many and complex, giving a lot of opportunities for the implementation errors. Pre-emptive testing with the Defensics VPN package helps in dramatically decreasing the possibility of breach by malicious attacks using malformatted input.

» More information

 

Including test suites for:

IPSec, SSH1 Server, SSH2 Server, SSL3/TLS1.0/1.1 Client, SSL3/TLS1.0/1.1 Server, TLS1.2 Client, TLS1.2 Server, ISAKMP/IKEv1 Server, ISAKMP/IKEv1 Client, IKEv2 Server, L2TPv2/v3, OCSP Client, OCSP Server, X.509 Certificates, DTLS in implementation, SCEP, CMPv2 server, IPv6 AH, IPv6 ESP

<top>


VoIP and IMS

Telecommunications services are usually both ubiquitous and availability-critical. Any flaws in fixed or mobile telecommunications protocol implementations can lead to widespread service disruptions. With Defensics IMS/VoIP package customers can pre-emptively eliminate robustness flaws from critical IMS and VoIP infrastructure and devices.

» More information

 

Including test suites for:

SIP UAS, SIP UAC, SIP TT, SIP-I, BICC, SCTP, H.248 Gateway (binary), H.248 Gateway (ASCII text), H.248 Media Gateway Controller (binary), H.248 Media Gateway Controller (ASCII text), H.323, RTSP Server, RTSP Client, SSL3/TLS1.0/1.1 Client, SSL3/TLS1.0/1.1 Server, SigComp, RTP/RTCP/SRTP, MGCP, UPnP Gena Server, UPnP Multicast Eventing, UPnP SOAP, UPnP SSDP Control Point, UPnP SSDP Device, Diameter Server, Diameter Client, STUN Client, STUN Server, TURN Client, TURN Server

<top>


IPTV

Traditional television has taught the customers to value quality: they have little tolerance for IPTV packet loss, latency or jitter. Codenomicon Defensics is the only negative testing solution today that offers End-to-End security testing for the whole infrastructure including the client side, thus eliminating the risks and mitigating the threats before the systems are deployed.

» More information

See also the Digital Media package

 

Including test suites for:

IPv4, IPv6, SSL3/TLS1.0/1.1 Client, SSL3/TLS1.0/1.1 Server, TLS1.2 Client, TLS1.2 Server, IPsec, RTP, RTSP Client, RTSP Server, HTTP Client, HTTP Server, TFTP, FTP Client, FTP Server, PIM-SM/DM, RSVP, IGMP, MPEG4, H264 File, H264 RTP, MPEG2 Transport Stream

<top>


3G/4G LTE

Defensics 3G package addesses the security and robustness of the 2.5G and 3G core networks. The most critical devices in the network, including GGSNs, SGSNs, RNCs and charging gateways converse using GTP, for which the tests are included in Defensics 3G package. The devices are tested through standard interfaces, including Gn and Gp. Additionally, Defensics 3G package includes tests for various other protocols in 3G environment, including LDAP, which is used in accessing and storing security critical information such as user authentication data and IT management information. Defensics 3G protocol test suites constitute an essential toolkit for anyone who develops or depends on the robust functioning of 2.5G and 3G networks.

» More information

 

Including test suites for:

S1-AP, GTPv2-C Server, GTPv1 Server, GTPv1 Client, Diameter Server, Diameter Client, SIP UAS, SIP UAC, SCTP, GRE, IPSec, LDAP Server, GTPv0, TLS/SSL Server, TLS/SSL Client, RADIUS Server, SMS PDU SMS over SMPP, SMPP, MAP

<top>


Digital Media

Sometimes digital media can be deadly for the devices processing it. Defensics Digital Media is a unique security and robustness testing solution that takes into account this attack vector that is too often ignored by the other test solutions.

» More information

 

Including test suites for:

Audio (AIFF, AU, AMR, IMY, MP3, VOC, WAV)

Image (BMP, GIF, JPEG, MBM, PCX, PNG, PIX, PNM, RAS, TIFF, WBMP, XBM, XPM, WMF)

Video (AVI, Quicktime, MPEG1, MPEG2, MPEG4)

Archive (ZIP, CAB, LHA, GZIP)

<top>


Email

If an email system crashes, it will not go unnoticed. Therefore it is important that all the elements in the email solution are robust and trustworthy. Codenomicon provides testing tools that help you improve the robustness of your email system. With Codenomicon Defensics test suites you can test all email protocols, both client and server side, to proactively find and fix the vulnerabilities in the software.

» More information

 

Including test suites for:

POP3 Client, POP3 Server, IMAP4 Client, IMAP4 Server, MIME, SMTP Client, SMTP Server, vCard, vCalendar

<top>


Bluetooth

Bluetooth is often thought to be separate from the security critical systems, but that is a dangerous assumption. Consider, for example, a smartphone or PDA, Bluetooth enabled cars or medical devices. A security breach with these may lead to significan financial loss or even in the loss of life. A practical testing of 31 Bluetooth enabled devices in mid-2006 revealed less than 10% survival rate when subjected to Defensics Bluetooth robustness testing solution. Defensics Bluetooth package represents the testing solution of choice for all quality and security-minded vendors.

» More information

 

Including test suites for:

A2DP, AVRCP, HSP, HFP, OBEX, L2CAP, SDP, RFCOMM, OPP, FTP, BNEP, PBAP, HID, Bluetooth LE suites (GATT, health profile, SMP server)

<top>


WLAN

Wi-Fi is one of the technologies where the adoption rate has skyrocketed and has truly changed the way we access information systems, making it increasingly location independent. Unfortunately, new technology and new usage models also bring in the new security challenges and we've already seen a number of Wi-Fi vunerabilities out in the open. In the wireless world, anything can be attacked, anyone can attack and an attacker can remain anonymous. Defensics Wi-Fi protocol package is the solution of choice for anyone wishing to ensure the security and robustness of Wi-Fi Access Points and Wi-Fi enabled client devices.

 

Including test suites for:

802.11 Access Point (AP), 802.11 Client, WPA1/2 AP, WPA1/2 Client, WPA-Enterprise AP


Link Management

Defensics Link Management protocol package addresses the security and robustness of fundamental Layer 2 protocols. Pre-emptive testing of the STP/RSTP/MSTP and LACP implementations in network nodes and switches ensures interruption-free service and helps avoiding the costs caused by possible downtime.

 

Including test suites for:

LACP, STP, MSTP, RSTP, ESTP

<top>



File Systems/Storage

Recent years have seen a steady trend towards networked data storing with Storage Area Networks (SAN) and Network Attached Storage (NAS). Traditionally, SAN systems have been isolated islands but have lately been opening up to public IP networks and moving from Fibre Channel to ethernet based iSCSI. This opens up an unprecedented amount of potential attack vectors to SAN/NAS systems that have been originally designed for high capacity and performance, with security being just an afterthought. Defensics Filesystems & Storage solution enables organizations to defend against SAN/NAS attacks and protect their critical corporate data.

 

Including test suites for:

CIFS/SMBv1 Server, FCoE Client, FCoE Server, iSCSI Server, NFSv2/3 Server, NFSv4 Server SMBv2 Client, SMBv2 Server, SunRPC Server SMBv3 Server, SMB3v3 Client, NETBIOS

<top>


Industrial Automation (SCADA/DCS)

Industrial Automation systems collect data and control processes using SCADA (supervisory control and data acquisition) protocols and DCS. SCADA/DCS needs to transfer data and send control commands reliably over a potentially slow, unreliable communications medium. Any problems in the communications can have significant results. SCADA fuzzing will simulate failures proactively in order to repair them before damages occur.

Including test suites for:

 

Modbus Client, Modbus Server, IPv4 (ARP Client, ARP Server, ICMP, IGMP, IPv4, TCP/IPv4 Client, TCP/IPv4 Server, UDP/IPv4), XML/SOAP Server, XML/SOAP Client DNP3 Server, DNP3 Client IEC-104 Server, IEC-104 Client IEC-61850-MMS Server, IEC-61850-MMS Client GOOSE, CIP/Ethernet/IP, COAP, Profinet DCP, Profinet PTCP Server, Profinet PTCP Client, Web Applications, HTTP Server, HTTP Client, BacNet

Codenomicon's ISASecure Solution is an efficient, reliable, and flexible testing solution that is recognized by The ISA Security Compliance Institute (ISCI) to meet the requirements of ISASecure EDSA certification program.

Read more: Codenomicon ISASecure Solution.

<top>


Web applications

Modern web applications have introduced a whole new range of possible attack vectors. Always online, always available for anyone with an internet connection, they are a tempting target for an outside attack.

Codenomicon Defensics test suite package for web application developers contains every fuzzing tool you need to get rid of vulnerabilities and ensure the robustness and reliability of your application.

» More information

 

Including test suites for:

JSON, SOCKS Client, SOCKS Server, Traffic Capture, Universal Fuzzer, Web Applications, Web Sockets (HTTP transport), XML Parser, XML/SOAP Server, XML/SOAP Client

<top>