[10541] in bugtraq
nidsbench announcement
daemon@ATHENA.MIT.EDU (Dug Song)
Thu May 13 18:07:08 1999
Mime-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Message-Id: <Pine.BSF.3.96.990513125525.12587F-100000@lukyduk>
Date: Thu, 13 May 1999 14:16:31 -0400
Reply-To: Dug Song <dugsong@anzen.com>
From: Dug Song <dugsong@ANZEN.COM>
X-To: nobody@anzen.com
To: BUGTRAQ@NETSPACE.ORG
Anzen Computing is pleased to announce the initial release of
nidsbench, a network intrusion detection system test suite.
nidsbench is being published in the hopes that a more precise testing
methodology might be applied to network intrusion detection, which is
still a black art at best.
This release of nidsbench includes:
fragrouter:
Implement all IP fragmentation attacks outlined in T. Ptacek and
T. Newsham's "Insertion, Evasion, and Denial of Service: Eluding
Network Intrusion Detection" paper of January, 1998.
tcpreplay:
Replay saved tcpdump(8) dumpfiles at arbitrary speeds.
nidsbench is published under a BSD-style license, and has been tested
on the following platforms:
OpenBSD 2.x
FreeBSD 3.x
BSD/OS 2.x
Linux (2.x kernels)
Solaris 2.x (tcpreplay only)
For more information, please visit
http://www.anzen.com/research/nidsbench/
-d.
