Fuzz Testing with EDSA Modules

This topic describes how to test using the EDSA modules in beSTORM.

NOTE: For more information on EDSA, see the Appendix section of this guide.

To test with an EDSA module in beSTORM, do the following:

  1. Open beSTORM Client.

  2. Select New Project. The beSTORM New Project Wizard opens.

  3. On the Welcome page, do the following:

    1. In the Project Name box, enter a name.

    2. Optionally, select a different file location for your project in the Location Name box.

    3. For Please select the wizard, select Advanced.

    4. Leave Perform a port scan, and service detection and assist me in choosing the relevant module unchecked.

  4. Select Next.

  5. On the Basic Configuration page, do the following:

    1. In the beSTORM's predefined modules list, select an EDSA module. This example uses the EDSAv2-402 ARP (Address Resolution Protocol) as specified by [ISASecure EDSA-402] ISCI Embedded Device Security Assurance – Testing the robustness of implementations of the IETF ARP protocol over IPv4.

    2. In the Network Device list, select the device to use for testing.

  6. Select Next.

  7. On the Advanced Configuration page, leave all parameters to their default setting.

  8. Select Next.

  9. On the Module Environment page, set various parameters related to the tests. To make any change, select the corresponding box in the Value column, and then modify its contents.

  10. Select Next.

  11. On the Test Selection page, all tests are selected by default. To skip a test, clear its checkbox.

  12. Select Next.

  13. On the Extra Configuration page, set the Saturation Rate Threshold parameter to be fixed or to automatically adjust to optimize the CPU usage of the computer running the test. Since sending traffic and monitoring can be executed on different machines, you can also set the hostname or IP address of the machine that will do the monitoring, the monitoring types to use, and the communication ports to use.

  14. Select Next.

  15. On the Complete beSTORM wizard page, select Finish to start testing, or clear the Auto-start beSTORM scan now checkbox to exit the wizard and test later. Once you start the test, watch the status screen for periodic system notifications; beSTORM will open a dialog when a security vulnerability is found.