Maybe there have been times when you have pentested a firewall. As part of a grey box engagement you were assigned the task of auditing that HUGE firewall rulebase and were stuck on how to proceed, just because of the sheer volume of information. This tool in Perl is created to help in auditing a rulebase and helping you to narrow down on the weak rules. Current support is just for Cisco PIX though the framework was designed to scale across multiple firewalls and no major changes need to be made.
Updates
- Outputs now available in reasonably neat HTML format
- No more complex command line arguments, everything’s in a config file
- More ports added in vulnerable ports section
- Options available to obtain detailed/non detailed output
You can download fwauto v.1.1 here:
Or read more here.