Scott Weeks wrote:
Hello Everyone,
Alex asked to test his firewall against:
1.Against syn-flood:
2.Against udp/icmp flood:
3.Against Ping of death /Teardrop:
4.Against IP spoofing:
5.Against Smurf:
Nmap, Nessus, Ethereal or Snort will not test the firewall
for reactions to the above attacks.
Metasploit might at least provide you with the framework for delivering
some of these payloads. I typically use it for pen-testing workstations
and servers, so I can't say much about its suitability for the
particular tasks you're looking at.
http://www.metasploit.com/
See also the links in this post:
http://seclists.org/lists/pen-test/2005/Jan/0074.html
This tool in particular might be even better than what you're looking
for, as it more or less throws random noise at a network device:
http://www.packetfactory.net/projects/ISIC/
This means that you can also trap for accidental or unforeseen breakage.
Good luck, and let us know what you come up with....
--
Dan McGarry it.psl@fsp.org.vu
IT Consultant
Community Communications Project
