Security Testing—find and fix vulnerabilities quickly. The Spirent CyberFlood security testing options provide users an effective means to test with a database of tens of thousands of up-to-date applications, attack, and malware scenarios. This allows you to mix attacks and applications to verify and analyze network security.
Delivered via the optional Test Cloud content subscription, CyberFlood enables users to stay on top of the application explosion and easily recreate millions of sessions of real application traffic in the lab. Users can quickly test application performance and security detection and control capabilities of systems, such as next-generation firewalls, IDS/IPS, SD-WAN, SASE, DPI solutions, and more
Benefits
Accuracy: Test with real user-generated traffic, as seen on your network, with detailed metadata that describes the user operation contained in each test for quick identification and resolution of issues prior to deployment.
Actionable Results: Quickly determine security controls’ catch rate of tested attacks with the ability to see the exact point of detection in the attack/malware flow, precisely showcasing security effectiveness.
Live Content: Access content that is constantly updated with new applications, attack, and malware scenarios to keep up with your dynamic environment and testing needs.
Flexible: Configure comprehensive application flows and define SNI header information that can be used to validate security controls for inspecting and identifying encrypted traffic.
NetSec OPEN: Test with built-in industry standard methodologies. NetSec OPEN is a network security industry forum of network security vendors, tool vendors, labs and enterprises, collaborating to create open and transparent testing standards for today’s modern content-aware network solutions. CyberFlood Supports over 50 built-in NetSec OPEN methodologies.
MITRE ATT&CK™: Easily create and execute tests from the built-in MITRE ATT&CK framework. Quickly select from attack groups and techniques to validate specific vulnerability types. Use comprehensive MITRE ATT&CK reporting to quickly evaluate your security landscape.
Hacker Behavior: Easily add evasion techniques to further challenge security controls, with virtually unlimited traffic flow variants from a wide range of available evasion techniques
Flexibility
CyberFlood Security Testing is available as an option on all CyberFlood platforms: Appliances, Virtual and Cloud solutions.
Using tens of thousands of ready-to-run performance and security tests for a wide range of popular applications, including peer-to-peer (P2P), Business, Instant messaging (IM), social media, and thousands of known security attack templates, users can test:
Policy Enforcement for QoS Application-aware systems, such as DPI engines, application firewalls, and mobile packet gateways.
The effectiveness of DPI, IPS/IDS, ALG, SASE, and SD-WAN systems, evaluating their performance under real-world conditions, as well as the potential impact of security attacks on performance.
Comprehensive multi-zone test cases to run applications, attacks and malware through multiple devices and security controls in the same test.
DDoS mitigation services and policies with volumetric and protocol DDoS emulation.
Advanced NGFW and SD-WAN security inspection capabilities with full support of application, attack and malware scenario encryption.
Security controls via SNI policy detection scenarios.
Devices with mixed legitimate load and attack traffic to further challenge and assess security controls under real-world conditions.
Data loss prevention (DLP) policies, using CyberFlood files created on-the-fly or custom file sets, to quickly assess that those policies are working to your specifications.
Security controls with encrypted content, including applications, attacks and malware, validate the security controls’ ability to manage encrypted legitimate and malicious content. Upload your own certificates for specific and comprehensive test configurations
ds_cyberflood-sec-testing_revd.pdf |