KFSensor

Basic testing

There are two basic ways of testing KFSensor.

1. Use your web browser

Open up your web browser on the same machine that KFSensor is running on and enter the following URL:
http://127.0.0.1/

By default KFSensor attempts to run a simulated web server on port 80. If you are already running a web server then try one of these other URLs:
http://127.0.0.1:8080/
http://127.0.0.1:3128/

2. Use a scanner

A scanner is designed to examine a machine for open ports and to gain information on the services it is running.

By downloading a scanner and running it against the KFSensor IP address it is possible to see what both sides of an attack.

You can obtain a couple of good scanners from these locations on the web:

• SuperScan - http://www.foundstone.com/
  A fast and easy to use scanner.
• NeWT - http://www.tenablesecurity.com/
  A powerful vulnerability scanner.
  

Notes

KFSensor will stop responding to scanner after a few multi-port scans as it will activate the KFSensor DOS protection mechanism, which will lock out the scanner.

It is best to run a scanner from a different machine to the one on which KFSesnor is running.

Next: What to do next

KFSensor On-Line Manual Contents