User Tools

Site Tools


ftest

FTester Package Description

The Firewall Tester (ftester for friends), is a tool designed for testing firewalls filtering policies, from version 0.6 it also includes an Intrusion Detection System (IDS) testing feature. Basically ftester is made of a packet generator tool (ftest) and a sniffer (ftestd), the first script injects custom packets with a signature in the data part while the sniffer listens for such marked packets, the comparison of the sniffer logs with the injector ones permits the identification of firewall filtering rules. Unlike common firewall testing tools or packet generators ftester is capable of generating network traffic that will looks like real connections to the firewall or IDS system tested, this feature allows us to test stateful inspection firewalls (like netfilter or ipfilter) and IDS (like snort). Another advantage of this architecture is that we can spoof crafted packets source address since the sniffer knows which packets are generated by it's counterpart, some tricks involving TTL permits the spoofing also when simulating real connections, this is described as the 'connection spoofing mode'.

Source: https://github.com/inversepath/ftester

Ftester Homepage | BlackWeb Ftester Repo

ftest.txt · Last modified: 2019/05/01 13:44 by admin

(C) BlackWeb Security 2017 - 2020