Evader 2.01 provides organizations with a free tool that can be used to test their network's ability to resist advanced evasion techniques (AETs). Evader 2.01 includes a new graphical user interface for improved usability, supports multiple evasion techniques, and can be used in any test environment. Advanced evasion techniques (AETs) are used to attack networks by combining several known evasion methodologies to create a new, unknown, and dynamically changing technique, delivered to other layers of the network simultaneously. This allows an attacker to successfully execute any exploit, payload, or malicious code toward a target without being detected.
Evader 2.01 is a ready-to-use test lab that includes a set of AETs. It allows an organization to manually or automatically run a variety of AET combinations that conceal the well-known MSRPC (2008) and HTTP (2004) exploits, distributing them through the network's security devices under test toward a vulnerable target image. Evader 2.01 includes a set of AETs that have gone through the CERT's vulnerability coordination process, initiated two years ago. The essence of Evader is to provide objective data on the readiness of an organization's security devices against AETs, to support decision-making, and to raise the organization's security level.
To download Evader for free and learn more about the tool, visit evader.stonesoft.com.
