IMMUNITY : Knowing You're Secure

Immunity SILICA - Redefining Penetration Testing

Immunity SILICA is a hand-held penetration testing product that leverages Immunity CANVAS to provide a unique testing tool for networks. Currently it supports 802.11 (Wi-Fi), Ethernet via Bluetooth, and USB networking. GPS is only supported for use in US and Canadian territory.

Its slim, PDA-like profile allows the penetration tester to perform testing while behaving innocuously.

Want to see a demo of SILICA?

 Immunity Inc. will be a vendor at the below listed conferences. If you are going to be there, we would love to meet with you and show you how SILICA works. Please email admin@immunityinc.com for more information about our plans.

Syscan in Hong Kong May 29-30, 2008. syscan.org



Silica Scan


SILICA Use Cases

      Covert analysis tool: With SILICA in your pocket running in non-stop attack 
  or probe modes, you will continuously target every visible access point, 
  automatically connecting to and attacking all insecure networks.

  Bypassing 802.11b/g security: Enable hidden session identification 
  discovery and SILICA will reveal the non-broadcasted SSID of remote access 
  points. Fed up of being filtered from MAC protection lists? Enable MAC 
  address evasion and escape any MAC address filters set by the AP 
  administrator. If you already know an allowed MAC, this feature also 
  allows it to be manually set in order to audit your network. 

  Aggressive attack: Want to enumerate which systems can be broken into 
  remotely? SILICA will attempt to gain unrestricted access to all systems 
  connected to your access points and extract valuable information in the 
  form of screen-shots, password hashes, or configuration details. SILICA 
  will even let you upload and execute your own remote access utility on 
  target systems, giving you remote wireless access to insecure systems.

  Evading personal firewalls: SILICA's unique passive operating system 
  identification will even identify machines running a personal firewall.

  Gather usage data: Ever wanted to identify the most commonly used access 
  points in a geographical location? Use probe mode along with non-stop 
  scan, walk in an area collecting access point type information  and 
  configuration details such as encryption methods and signal levels. This 
  scan will extract a list of operating systems and machines behind the 
  wireless access point or ad-hoc network, allowing you to evaluate what 
  networks are the most heavily used.

  Map an area: Walk around running SILICA in non-stop scanning mode with 
  GPS enabled. It will map out an entire area by constantly seeking for new 
  access points and ad-hoc networks. GPS locations on the reports can be 
  used to plot over mapping applications or services.

  Map a nework: SILICA lets you map a network in a fast and easy manner.
  It also adds the ability to discover firewall protected hosts. Currently
  for speed reasons this is limited to a C class range but could be
  manually adjusted to scan different network segments.

  Security compliance: Launch the software in interactive scan mode with the 
  attack option selected. Eliminate false-positives with our unique methods 
  of breaking in to verify that a flaw does exist and is exploitable. 

  Advanced man-in-the-middle attacks: SILICA allows interception of all HTTP 
  traffic in a switched network between the wireless router, including any 
  bridged wired network and all associated clients. The data includes cookie 
  and authentication data within HTTP requests, which can be fed into a 
  separate web browser session to allow email review, capture of sensitive 
  authenticated traffic such as banking information, viewing of network 
  device administration, password gathering, etc.

  System identification: SILICA has unique methods for extracting information 
  remotely from network printers, embedded devices, PDA's, Windows systems, 
  routers, Unix workstations, and more. SILICA's remote identification and 
  reconnaissance methods are found no-where else.

  Rogue access point detection: Leave SILICA running in your desk while in 
  non-stop mode and it will identify any new access points or Ad-hoc 
  networks discovered in range. This is particularly useful for monitoring 
  buildings for suspicious devices being inserted into the premise without 
  permission, or monitoring unapproved ad-hoc networks from open laptops.

  Detect network misconfiguration: Often enough employees will open up 
  wireless ad-hoc connections in their laptops, bridging them to a wired 
  network without realizing the security implications. This imposes a 
  serious threat to a company's perimeter security. SILICA can detect this 
  if launched in probe mode with any type of scanning method. Immunity 
  recommends a scan-all that will scan all the available networks found in 
  the area. If anything is found it will be included in the SILICA report. 

  Pinpointing access points: Ever discovered a suspicious access point and 
  wanted to find its location? SILICA allows you to do this by viewing the 
  interactive signal meter which displays various information about the 
  device while you move around and approach it. Noise levels and quality may 
  increase or drop depending how close you are to the access point.

Pricing
$3600, includes
  • SILICA hardware device with pre-installed and configured software
  • Software updates for one year
  • Email support for one year

Want to read more? SILICA manual available here

For further information and how to order, please email silica@immunityinc.com.



Contact    |    Privacy Policy    |    Usage Policy

Copyright 2002-2004 - Immunity, Inc. All Rights Reserved.