Training

Webinar - Build and deploy safer products with new methods of security testing

1 min read

Security testing can be easy with the right tools! With an increase in cybercriminals targeting home/SOHO gateways and Wi-Fi APs, testing has never been more important. In this webinar, you’ll learn how monitoring the behavior of a device under test, by analyzing its live network traffic can help uncover issues that may not come to light with regular penetration testing. This revolutionary testing method validates that your device is following best practices or deployment policies prior to being deployed. Keep reading
security Home Gateways and WiFi Service Providers Cable and MSOs Enterprise Gateways and WiFi

Product release

QA Cafe Announces New Wi-Fi Router Security Test Solution

2 min read

PORTSMOUTH, N.H., March 26, 2020 /PRNewswire/ – QA Cafe, a leading provider of IP test solutions and capture analysis tools for broadband access, home networks, consumer electronics and service providers, today announced the release of the CDRouter Security test add-on. Featuring automated scanning, testing of product security features including parental controls, and a unique traffic monitoring capability, QA Cafe is first to market with a test automation solution tailored specifically to home/SOHO router and wireless AP security testing. Keep reading
Security

Training

Are your devices user interfaces vulnerable to common attack vectors?

7 min read

Security in home networking devices, particular home Wi-Fi routers, has come to the forefront in the last few years. While many of the discovered vulnerabilities are zero-day (meaning they are new vulnerabilities that can be exploited before they are known), some of the more recent attacks including VPNFilter, are exploiting common weaknesses in consumer router design that have been well known for some time. Security requirements vs. best practices Keep reading
ARP security TR-069 Home Gateways and WiFi Service Providers Cable and MSOs

Training

How do you test TR-069 enabled devices?

3 min read

If you’re developing a device or deployment that uses the CPE WAN Management Protocol (TR-069), like managed Wifi or other services, what should you test for? What are the benefits of automating it with a dedicated test platform? What are the benefits of getting certified or asking your vendors to certify? Basic components of TR-069 If you’ve been through our TR-069 training series, you’ve seen an in-depth look at all of the pieces that make CWMP work. Keep reading
security TR-069 WiFi Home Gateways and WiFi Service Providers Cable and MSOs

Training

Automated home gateway security testing

1 min read

Test your devices before attackers do. It’s no question now - malicious attackers are targeting the home network, and the gateway in particular. Testing for security vulnerabilities can be tedious and ineffective if you don’t have a controlled, repeatable, and fully automated test environment. Join the CDRouter team as we show you: How to test the functional performance of your security tools like parental controls, firewalls, and the security of your user interfaces. Keep reading
security TR-069 Wifi Home Gateways and WiFi Service Providers Cable and MSOs

Product release

CDRouter Release 10.3 - DOCSIS, DUT Control, and More

2 min read

CDRouter 10.3 is now available! We recently teased the release of CDRouter DOCSIS, and 10.3 contains that plus much more. Introducing CDRouter DOCSIS Testing both your cable modem and eRouter together in an automated, repeatable way has never been easy. With our new DOCSIS add-on, we’ve added all of the common DOCSIS configuration services so you can flex CDRouter’s power with both cable modems and complex eRouters that include Wifi, firewalls, and other user-critical services - all at once, all overnight, and completely automated. Keep reading
DOCSIS security TR-069

Training

Best Practices for Securing TR-069

4 min read

For our article on the alleged TR-069 vulnerability during the Mirai bot scare, go here. As one of the most largely deployed broadband management protocols in the world, TR-069 has quite a footprint, and a compromised system could potentially affect many broadband subscribers adversely. Luckily, TR-069 is built to operate on secure transport protocols. While there is nothing inherently insecure to the protocol itself, improper implementation of TR-069 clients and servers may expose problems that can be exploited by malicious attackers, as is the case with any web service. Keep reading
security TR-069 ssl tls Home Gateways and WiFi Service Providers Cable and MSOs

Training

Is your TR-069 implementation vulnerable to code injection attacks?

3 min read

Updates in CDRouter 10.3 The scenarios below are serious, and so we’ve added a series of tests to our tr69_conn_req.tcl module to cover your DUT’s TR-069 security and tests for code injection in TR-069 parameters. More on the Mirai worm attack in 2016 In 2016, a distributed denial of service (DDoS) attack dubbed the “Mirai worm” expanded its reach by exploiting a vulnerability in an exposed Broadband Forum TR-064 service (a deprecated service which we’ve written about here). Keep reading
security TR-064 TR-069 Home Gateways and WiFi Service Providers Cable and MSOs

Training

Mirai attack on home routers and alleged TR-069 vulnerability

5 min read

Update: Learn more about how this attack could be used against TR-069 devices here. The week of November 28 2016 saw a massive attack on certain home routers deployed by several European service providers. The attack was based on the Mirai Malware attack several weeks previous that affected the dynamic DNS services provided by Dyn, Inc.. The attack focused on sending certain SOAP commands based on the Broadband Forum’s older TR-064 protocol, through port 7547. Keep reading
security TR-064 TR-069 Home Gateways and WiFi Service Providers Cable and MSOs

Training

Known Gateway Bugs - Ignoring Credentials

3 min read

Holes in home gateway security allow for a malicious hacker to take over a gateway in the way they would any other computer system. While the holes in most cases have been complex and deep seated bugs that would be hard to find without a lot of work, there are some easy to find bugs that seem obvious but would be missed without negative testing. The Problem Most application protocols use some method of authentication to ensure security and control identity management of users of the service. Keep reading
security ssl Home Gateways and WiFi

Training

Protecting Against Vulnerabilities in SSL

1 min read

The IETF deprecated SSL version 3.0 in 2015. This means that it is no longer be standard to fall back to SSL 3.0 in protocol negotiations, and for good reason: there have been a host of vulnerabilities in Secure Socket Layer, some of which are of particular concern to home networking devices that have web-based configuration tools or support TR-069. We hadn’t brought up the POODLE vulnerability before, but it, along with other vulnerabilities found in older versions of SSL and TLS, can be exploited even if your DUT is using the most recent versions of these protocols. Keep reading
security ssl TR-069

Training

The Misfortune Cookie and Security in the Home Gateway

2 min read

DEFCON22 had a number of revelations concerning web server security of systems meant to deploy TR-069 in a subscriber network. Most of the investigation done surrounded vulnerable ACS - that is, malicious attackers gaining access to the auto-configuration server, allowing them to control many hundreds of thousands of home devices. Recently, the same investigators set their sights on the broadband CPE themselves, and discovered some interesting vulnerabilities, including one dubbed the “Misfortune Cookie”. Keep reading
security

Training

Open SSL Heartbleed Bug in the Home Gateway

2 min read

You may have recently heard of a major bug in the OpenSSL implementation, widely used to provide secure communications on the web. This vulnerability is fairly widespread, but has been corrected and will be fixed as more systems are patched. We also made an example capture and explanation of the bug and a packet capture of the attack in action at our CloudShark Appliance website. The security community quickly moved on this vulnerability, and in addition to the OpenSSL patch that is available to fix the problem, there have been several tools built to test servers for the Heartbleed vulnerability. Keep reading
security ssl

Training

Port Scanning Test Configuration for IPv4 and IPv6

6 min read

CDRouter includes port scanning test cases in the firewall.tcl module which will probe the WAN interface of the DUT for open TCP and UDP ports over IPv4. These open ports provide services either by the DUT or forwarded to internal LAN clients. Users of the CDRouter IPv6 add-on will find they can also perform similar tests over IPv6. Although there are certainly legitimate uses of port scanning, the vast majority of it occurs on the public Internet and is directed toward the WAN ports of random CPEs. Keep reading
nmap security Home Gateways and WiFi Service Providers Cable and MSOs Enterprise Gateways and WiFi

Categories

Tags

6rd 6to4 802.11 802.1x alg api apple-homekit arp bbf.069 bridge cable-and-msos cloudshark dhcp dhcpv6 dns docsis ds-lite dsl dual-stack enterprise-gateways-and-wifi firewall ftp fttdp g.fast gpon h.323 home-gateways-and-wifi http icmp ics igmp igmp-snooping ike iot ipsec ipv4 ipv6 lan lte lw4o6 md5 mesh mobile moca multi-service multicast nas nat netbios nmap performance ppp pppoe pptp radius repeater rtsp scalability security service-providers sip smtp snmp ssl stb storage tftp tls tod tr-064 tr-069 tr-369 upnp usp vlan voip vpn wan wi-fi wifi xmpp