Tag Archives: test
SerialSniffer
Developers need exact information and are often forced to get access to serial ports for testing purpose.
The typical user of SerialSniffer is a software engineer. Most commonly an external device is connected to a PC, which is running a special application using a serial port. The external device may be: a sensor, a slide projector, a printer, a barcode scanner, … The serial connection has to be “ripped” and SerialSniffer is mounted in between the serial link. SerialSniffer will provide all data from one side of the connection to the other and vice versa, log all the data and, if applicable, manipulate them.
SerialSniffer
is a windows shareware to visualize data, which are exchanged over the serial ports (i.e. RS232 or RS422).
SerialSniffer gives you the possibility
– to have a deep view inside the data. The data stream, which is exchange on the serial ports, is visualized by SerialSniffer. You also can determine which data comes from which port.
– to log the data stream
– to tunnel the serial port through the network
– to exchange dedicated data parts from the data stream
– to search for seldom data
– to open a terminal dialog
– to use symbols instead of raw data
SerialSniffer is very easy to use
Simply choose the type of connection (serial, network or virtual serial port), the parameters (i.e. baud rate) and open the connection.
Not only the standard baud rates (like 9600 baud) but also user defined baud rates can be used. It is also possible to translate between different baud rates, as both comports can be configured independently.
Comport names up to ‘Com256:’ are supported to use SerialSniffer on systems with a lot of serial ports (provided by additional adapters, IRDA, Bluetooth etc).
The complete configuration will be stored automatically on closing the application. The user can also store it in customized files to re-load it for recurrently tasks.
Practical example
Test of a complex system: a test specification exists; SerialSniffer logs all the data to a file, which is attached to the test protocol. But how to test, the system deals with errors on the serial link? If the worst comes to the worst, the system will crash. To test this, SerialSniffer gets a set of rules, which data is to be manipulated. I.e. some datasets may be shortened, some may contain additional data or the checksums are changed. In most cases, it is not allowed to integrate the changes to the device under test, because you will not test the original system anymore. Using SerialSniffer, you are no longer forced to do so.
Practical example
Once, we had the mission to develop a trip recorder for a ferryboat. The main computer of the ship dumps all the data on a serial port without a return line (one way street for the data). During the development, we were not able to travel with the ship all day long. So we recorded the data with the SerialRecorder of SerialSniffer (similar to a traditional tape) and did a playback as often as needed.
SerialSniffer
Developers need exact information and are often forced to get access to serial ports for testing purpose.
The typical user of SerialSniffer is a software engineer. Most commonly an external device is connected to a PC, which is running a special application using a serial port. The external device may be: a sensor, a slide projector, a printer, a barcode scanner, … The serial connection has to be “ripped” and SerialSniffer is mounted in between the serial link. SerialSniffer will provide all data from one side of the connection to the other and vice versa, log all the data and, if applicable, manipulate them.
SerialSniffer
is a windows shareware to visualize data, which are exchanged over the serial ports (i.e. RS232 or RS422).
SerialSniffer gives you the possibility
– to have a deep view inside the data. The data stream, which is exchange on the serial ports, is visualized by SerialSniffer. You also can determine which data comes from which port.
– to log the data stream
– to tunnel the serial port through the network
– to exchange dedicated data parts from the data stream
– to search for seldom data
– to open a terminal dialog
– to use symbols instead of raw data
SerialSniffer is very easy to use
Simply choose the type of connection (serial, network or virtual serial port), the parameters (i.e. baud rate) and open the connection.
Not only the standard baud rates (like 9600 baud) but also user defined baud rates can be used. It is also possible to translate between different baud rates, as both comports can be configured independently.
Comport names up to ‘Com256:’ are supported to use SerialSniffer on systems with a lot of serial ports (provided by additional adapters, IRDA, Bluetooth etc).
The complete configuration will be stored automatically on closing the application. The user can also store it in customized files to re-load it for recurrently tasks.
Practical example
Test of a complex system: a test specification exists; SerialSniffer logs all the data to a file, which is attached to the test protocol. But how to test, the system deals with errors on the serial link? If the worst comes to the worst, the system will crash. To test this, SerialSniffer gets a set of rules, which data is to be manipulated. I.e. some datasets may be shortened, some may contain additional data or the checksums are changed. In most cases, it is not allowed to integrate the changes to the device under test, because you will not test the original system anymore. Using SerialSniffer, you are no longer forced to do so.
Practical example
Once, we had the mission to develop a trip recorder for a ferryboat. The main computer of the ship dumps all the data on a serial port without a return line (one way street for the data). During the development, we were not able to travel with the ship all day long. So we recorded the data with the SerialRecorder of SerialSniffer (similar to a traditional tape) and did a playback as often as needed.
How Does Penetration Testing Work?
In the digital age, data can be as valuable as physical assets. Every year, companies spend hundreds of millions of dollars on hardware and software to protect the data located on their computers. A single security breach could mean having trade secrets compromised or customer information in the wrong hands. Passwords, firewalls and encryption are valuable tools in the ongoing battle against those who would attempt to bypass a company’s network security.
Once all of the components of a proper security system are in place, it is proper procedure to run a final test. This test is referred to as penetration testing. The cyberspace version of a military unit conducting war games, the test is an effort to compromise the newly installed security. A thorough test is the best way to reduce the risk of a security breach at the hands of a real threat.
The first step in the process is risk assessment. This is the practice of determining exactly what is at stake. By finding out exactly where vulnerabilities lie, a better picture can be formed as to exactly what a would-be information thief would be after. For instance, if an online retailer has a large database containing sensitive customer information such as credit card numbers or bank information, they can identify those assets as being a huge liability if compromised, as well as a prime target for hackers. Anther example of a potential liability is a company that has gone through great lengths to assemble a list of leads or clients. These kinds of assets are particularly appealing to unscrupulous competitors or hackers intent on blackmail.
After areas of vulnerability are determined, the penetration test can commence. Generally, the first systems tested are those that can be accessed from the outside. Websites, email access points and remote access platforms are the most frequent gateways for security breaches, and as such are the subject of the most intense tests.
In order to conduct a proper test, a security company must not only be familiar with the most current techniques and tools available to hackers and cyber criminals, they must also have the ability to foresee potential methods of bypassing security systems. This will keep a company’s computer system defense one step ahead of those who would wish to do harm. A solid penetration test is the last, and perhaps most important step, in being protected against important data being lost or stolen.