Dailydave mailing list archives

Re: IPv6, CANVAS, The Love.

From: Dave Aitel <dave () immunityinc com>
Date: Fri, 02 Feb 2007 11:41:08 -0500

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

I'm a big fan of fuzzers, but fuzzers and attack frameworks are two
different things.

I'm sure Codenomicon/PROTOS, MU, Breakingpoint, ProtoVer, SPIKE2K6 and
various other fuzzers all support IPv6 or protocols that run over
IPv6, but once they find a vulnerability, you would then plug that
into CANVAS or another attack framework to target someone's machine.
So two sides of the same coin, as it were. Apples and Orangutans. NP
Complete and O(1). And so on.

I'm sure you're just feigning confusion here, but I wanted to make
sure you didn't induce real confusion in anyone reading this list. .
.which is unlikely except after yesterday's press coverage there's
1000 new people subscribed who might be CNN-type readers. They'll all
unsubscribe when they realize this list is mostly about breaking into
computers the hard way - where EIP is involved.

Being first is silly anyways. Everyone's first at something. The Zune
is the top seller in the category of 30gig mp3 players that are also
brown, but it sold like 5 units and the Microsoft guy in charge of
that marketing had to leave for "personal reasons".

There's no one best fuzzer; that's the beauty of the beast.

- -dave

Ari Takanen wrote:

Hello all,

On Fri, Feb 02, 2007 at 07:44:33AM -0500,

dailydave-request () lists immunitysec com wrote:

As of today, Immunity CANVAS is now the only penetration testing
platform that can handle IPv6. You know you're excited! What about all
those IPv6 DoD networks you can test now?


I do not usually want to promote our tools (too much) but wanted to
respond to the advertisement by Immunity.

Codenomicon has probably been the first to cover every single protocol
(100+ interfaces supported), and IPv6 is not an exception (well PROTOS
did some of the protocols before us, but that does not count because
we kind of are the same thing as the PROTOS Classic test suites
[1]). Codenomicon has done security testing of IPv6 for a long time
already. Also most if not all Codenomicon tools are IPv6
capable. Infact we (or our customers to be more exact) can find
zero-day flaws from almost any IPv6 device.

[1] http://www.codenomicon.com/media/press-releases/2007-01-09.shtml

/Ari


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)

iD8DBQFFw2miB8JNm+PA+iURAovFAKDUqSdKYeXgYOmwHVN5Uo/DVISlXgCeLtaC
F2N1W9klTGe+m5Xe5P2k83k=
=UOv8
-----END PGP SIGNATURE-----

_______________________________________________
Dailydave mailing list
Dailydave () lists immunitysec com
http://lists.immunitysec.com/mailman/listinfo/dailydave

Current thread:

IPv6, CANVAS, The Love. Dave Aitel (Feb 01)
- Re: IPv6, CANVAS, The Love. Jeffrey Denton (Feb 01)
- Re: IPv6, CANVAS, The Love. Robert Graham (Feb 01)
- Re: IPv6, CANVAS, The Love. Joanna Rutkowska (Feb 05)
  - Message not available
    - Re: IPv6, CANVAS, The Love. Joanna Rutkowska (Feb 05)
- <Possible follow-ups>
- Re: IPv6, CANVAS, The Love. Ari Takanen (Feb 02)
  - Re: IPv6, CANVAS, The Love. Dave Aitel (Feb 02)