‘Protowalk: Generic Protocol Fuzzer and Protocol Testing Tool’



‘The information has been provided by Frank Gardner.
The original article can be found at: http://sourceforge.net/projects/protowalk


‘Protowalk is a tool that has been created to allow for developers, QA testers, and security testers to identify weakness in both known and unknown network protocols which use TCP/UDP for transport. Protowalk acts as a man-in-the-middle between a Client-Server or Server-Server communication and record all transactions made, then can actively hijack stateful connections or (re-initiate stateless connections) and perform a variety of different tests including:

 * Buffer Overflow Testing
 * Replay Attacks
 * Data Manipulation / Randomization (Fuzzing)

Protowalk stores all packet data in a text file and is encrypted using Twofish with a random 128-bit IV and 256-bit session key. This tool is currently in the ALPHA stage of development.’

Categories: Tools