Nmap Security Scanner
*Intro
*Ref Guide
*Install Guide
*Download
*Changelog
*Book
*Docs
Security Lists
*Nmap Hackers
*Nmap Dev
*Bugtraq
*Full Disclosure
*Pen Test
*Basics
*More
Security Tools
*Pass crackers
*Sniffers
*Vuln Scanners
*Web scanners
*Wireless
*Exploitation
*Packet crafters
*More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:
edgeos



Penetration Testing: RE: Pen Testing Tippingpoint

RE: Pen Testing Tippingpoint

From: Michael Scheidell <scheidell_at_secnap.net>
Date: Sun, 10 Jun 2007 08:44:16 -0400

> -----Original Message-----
> From: listbounce_at_securityfocus.com
> [mailto:listbounce_at_securityfocus.com] On Behalf Of TStark
> Sent: Saturday, June 09, 2007 7:48 PM
> To: pen-test_at_securityfocus.com
> Subject: Pen Testing Tippingpoint
>
>
> Hello,
>
> I am planning on pen testing a Tippingpoint appliance, I
> think it's a 200e, I'm looking for some suggestions on what
> to use to pen test this thing. I haven't found a Nessus plug
> in to help test this appliance, I'd bet there is one out
> there somewhere.
>
> Any information to help me test/penetrate Tippingpoint would
> be very helpful, I'd like to make sure we test this thing
> well before we shell out that kind of dough.
>

Generally speaking, it has been a good device (I am a competitor, not a
user).
At $13K to $15K, its not such a bad purchase, if you are looking for an
IPS, and is peanuts to the cost of the people you want to watch it 24/7.
(the 4 or 5 people it takes to watch it 24/7 cost you, what?)

I seriously doubt you can hack it, or DOS it from the outside.
MAYBE, just MAYBE, you can find something to do to the internal
management interface, but that is unlikely also.

Just get some IPS testing software (most of it written by
3com/tippingpoint) and see if it suffers any delays or packet losses in
your environment.

If you find a problem, you could always send it to ZDI and they will pay
you for it ;-) (ZDI owned by Tippingpoint/3com) 

-- 
Michael Scheidell, CTO
SECNAP Network Security Corporation
Keep up to date with latest information on IT security: Real time
security alerts:
http://www.secnap.com/news
 
_________________________________________________________________________
This email has been scanned and certified safe by SpammerTrap(tm). 
For Information please see http://www.spammertrap.com
_________________________________________________________________________
------------------------------------------------------------------------
This List Sponsored by: Cenzic
Are you using SPI, Watchfire or WhiteHat?
Consider getting clear vision with Cenzic
See HOW Now with our 20/20 program!
http://www.cenzic.com/c/2020
------------------------------------------------------------------------
Received on Jun 10 2007
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
edgeos