Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: Re: Firewall rulebase automation - Grey Box assessment

Re: Firewall rulebase automation - Grey Box assessment

From: Secure Scorp <securescorp_at_gmail.com>
Date: Wed, 2 Jul 2008 17:49:03 +0530

I have seen the demo of the firsec
(http://www.niiconsulting.com/products/Firesec.html) and would
recommend using it . As suggested by Nikhil , it gives lot of options
and supports various firewalls.

Thanks,
Aditya Govind Mukadam

On Mon, Jun 30, 2008 at 6:36 AM, Rick Zhong <sagiko_at_gmail.com> wrote:
>
> Thanks Arvind for putting the efforts to develope the tool. You may
> want to take a look at AlgoSec's Automated Firewall Analyzer, I have
> tried it (http://www.algosec.com/en/products/firewall_analyzer.php).
> Good features, good results and cost good amount of $$$ (per
> firewall) as well.
>
> regards,
> Rick
>
> On Wed, Jun 25, 2008 at 1:21 PM, arvind doraiswamy
> <arvind.doraiswamy_at_gmail.com> wrote:
> > Hi Guys,
> > Maybe there have been times when you have pentested a firewall. As
> > part of a grey box engagement you were assigned the task of auditing
> > that HUGE firewall rulebase and were stuck on how to proceed , just
> > because of the sheer volume of information. I hence have created a
> > little tool in Perl to help in auditing a rulebase and helping you in
> > narrow down on the weak rules. Obviously this is a big Work In
> > Progress and can be better but its a start and what I've written works
> > - Current support is just for Cisco PIX though the framework was
> > designed to scale across multiple firewalls and no major changes need
> > to be made.
> >
> > Please come back to me with feedback on how I can make this better and
> > what I've missed in the first place. The code can be accessed at:
> > http://sourceforge.net/projects/fwauto
> >
> > Thanks
> > Arvind Doraiswamy
> > Security Consultant - Paladion Networks
> > http://www.paladion.net
> >
> > ------------------------------------------------------------------------
> > This list is sponsored by: Cenzic
> >
> > Top 5 Common Mistakes in
> > Securing Web Applications
> > Get 45 Min Video and PPT Slides
> >
> > www.cenzic.com/landing/securityfocus/hackinar
> > ------------------------------------------------------------------------
> >
> >
>
>
>
> --
> Information (In)Security @ Where It Matters - http://blog.rickzhong.com
>
> ------------------------------------------------------------------------
> This list is sponsored by: Cenzic
>
> Top 5 Common Mistakes in
> Securing Web Applications
> Get 45 Min Video and PPT Slides
>
> www.cenzic.com/landing/securityfocus/hackinar
> ------------------------------------------------------------------------
>

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Top 5 Common Mistakes in
Securing Web Applications
Get 45 Min Video and PPT Slides

www.cenzic.com/landing/securityfocus/hackinar
------------------------------------------------------------------------
Received on Jul 02 2008

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos