Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



IDS: RE: TippingPoint Releases Open Source Code for FirstIntrusionPrevention Test Tool, Tomahawk

RE: TippingPoint Releases Open Source Code for FirstIntrusionPrevention Test Tool, Tomahawk

From: Mitchell Ashley <mitchell_at_stillsecure.com>
Date: Tue, 2 Nov 2004 10:56:58 -0700

Lets face it, any "open" IPS testing tool released by any IPS vendor will
have little industry or customer credibility. This is reminiscent of the
early RDMBS days when the vendors created their own proprietary benchmarks.
They had little credibility until the benchmark tests we defined, specified
and improved by industry standards groups.

Caveat emptor.

. . .
Mitchell Ashley
CTO
StillSecure

303-881-9353 Mobile
303-381-3880 Fax

www.stillsecure.com
Reducing your risk has never been this easy.
. . .
The information transmitted is intended only for the person to which it is
addressed and may contain confidential material. Review or other use of this
information by persons other than the intended recipient is prohibited. If
you've received this in error, please contact the sender and delete from any
computer.

-----Original Message-----
From: Clemens, Dan [mailto:Dan.Clemens_at_healthsouth.com]
Sent: Tuesday, November 02, 2004 8:17 AM
To: Kyle Quest; focus-ids_at_securityfocus.com
Subject: RE: TippingPoint Releases Open Source Code for
FirstIntrusionPrevention Test Tool, Tomahawk

 

>What we need... is Snort for IPS/IDS/Firewall
>testing, which would be advanced by the security
>community and not by a commerical company who's
>business interests are in conflict with the purpose
>of the tool.

        That's just my take on it...

        - Kyle, Don't forget the 'snort' folks have just as much of a vendor
presence as TippingPoint or any other IDS vendor. TippingPoint _may_ be
trying to encourage use of their tool for IDS evolution as a whole much
like snort has yet still has hopes they will get some benefit from their
free tool.

        Now do you have any pcaps to contribute to snort or the rest of us
packetninjas?

        -Dan

Confidentiality Notice: This e-mail communication and any attachments may
contain
confidential and privileged information for the use of the designated
recipients named above. If
you are not the intended recipient, you are hereby notified that you have
received this
communication in error and that any review, disclosure, dissemination,
distribution or
copying of it or its contents is prohibited. If you have received this
communication in
error, please notify me immediately by replying to this message and deleting
it from your
computer. Thank you.

--------------------------------------------------------------------------
Test Your IDS

Is your IDS deployed correctly?
Find out quickly and easily by testing it with real-world attacks from
CORE IMPACT.
Go to http://www.securityfocus.com/sponsor/CoreSecurity_focus-ids_040708
to learn more.
--------------------------------------------------------------------------
Received on Nov 02 2004

[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]