[Snort-users] Test Snort Performance
Davison, Charles Robert
cdaviso1 at ...17214...
Sat Dec 19 10:51:43 EST 2015
This should be a good list of testing things:
Ixia Breaking Point (Security Testing)
Nessus (Vulnerability Scanner)
Spirent (Security Testing)
IDS Wakeup<http://www.hsc.fr/ressources/outils/idswakeup/> (IDS Testing)
Hping<http://www.hping.org/> (Packet Crafting)
NMAP<https://nmap.org/> (Port Scanning)
Nikto<https://cirt.net/Nikto2> (Web Vulnerability Scanner)
Ostinato<https://code.google.com/p/ostinato/> (Packet Crafting)
Packeth<http://packeth.sourceforge.net/packeth/Home.html> (Packet Crafting)
Pytbull<http://pytbull.sourceforge.net/> <http://pytbull.sourceforge.net/> (IDS Testing)
TCPreplay<http://tcpreplay.synfin.net/> (IPS/IDS Testing)
Tomahawk<http://tomahawk.sourceforge.net/> (IPS/IDS Testing)
From: Ali Masoudi [mailto:masoudi1983 at ...11827...]
Sent: Saturday, December 19, 2015 12:58 AM
To: snort-users at lists.sourceforge.net
Subject: [Snort-users] Test Snort Performance
I have a Centos system which I compiled and installed snort on. I want to perform a performance test with custom set of rules before deploy the system. With using of iperf and some edited pcap file. I ran some tests but they're not enough.
As for pcap file, I download it from internet and I edited MAC & IP addresses using tcpwrite to match source and destination. but destination system did not see entire traffic within pcap file.
Is there any tool to test snort performance? Or should I use traffic generators available in internet?
Any help would be appreciated. Sorry for my poor English.
-------------- next part --------------
An HTML attachment was scrubbed...
More information about the Snort-users