The Ethical Hacker Network - Custom Protocol Fuzzing

Home

Calendar

Certifications

Latest Additions

EH-Net Login

Welcome Guest.

Lost Password?

No account yet? Register

Who's Online
We have 41 guests and 1 member online

You are here: Home

Ethical Hacking Discussions and Related Certifications

Network Pen Testing

Custom Protocol Fuzzing

EH-Net

May 22, 2013, 06:09:16 PM

Welcome, Guest. Please login or register.
Did you miss your activation email?

News: Go back to The Ethical Hacker Network Online Magazine Home Page

Home

Help

Calendar

EH-Net > Ethical Hacking Discussions and Related Certifications > Network Pen Testing (Moderator: don) > Custom Protocol Fuzzing

Pages: [1] Go Down

« previous next »

	Author	Topic: Custom Protocol Fuzzing (Read 1810 times)
0 Members and 1 Guest are viewing this topic.

nimari

Newbie

Offline

Posts: 6

Custom Protocol Fuzzing

« on: September 04, 2009, 07:50:23 PM »

Hi,

This is my first post. And I start with a question

I have a programmer friend who is writing an application for a company. He want me to test it for DOS, DDOS and Authentication attacks.

The application has two parts, a server part and a client one. The server app listens for client request on a tcp port, the client sends commands to the server. The whole thing is custom. It is not standard like HTTP, FTP, SMTP ..... etc.

I installed the server app on a virtual machine in vmware, and installed the client on another virtual machine and used wireshark in between to sniff the traffic.

I did some analysis of the sniffed traffic and could see some of the commands used, like the authentication conversation between the server and client.

My question is is there any way or may be tool that will deal with custom app protocols
to help me further analyse the application and do my pentest.

Thank you very much.