matousec.com (site map)

Poll

On Windows 7 (or Vista) I use

  unlimited administrator's account (58.01%)

  limited administrator's account (16.29%)

  common user's account (12.72%)

  nothing (I do not use Win 7/Vista) (13.87%)

more

results

Security Software Testing Suite

About the suite

Security Software Testing Suite (SSTS) is a set of tools used for testing Windows security software that implement application-based security – i.e. most of the Internet security suites, HIPS, personal firewalls, behavior blockers etc. SSTS is based on the idea of independent programs that attempt to bypass various features of the security software. Each test of SSTS is directed against a single feature or against a few closely connected features of the security software.

SSTS was used in our Proactive Security Challenge project. This project has been replaced with Proactive Security Challenge 64, in which SSTS64 is used instead of SSTS.

Changelog

Download

Warning: This software is used for testing of security products and should never be used on production machines. Using this software may damage or erase your data. This software is provided "as is" and without warranty of any kind. More information about each test can be found in its source code file and in the shared source code files of the whole suite.

By using SSTS you agree with its licence that is included in the archive in licence.txt.

Download SSTS. The archive is password protected. The password is "ssts".

Contribution

If you are a security researcher, analyst or coder and you have an idea for a test, please share it with us. You can either send us just a description of your idea, a proof of concept or, ideally, a fully integrated test to the SSTS framework. We will analyse it and possibly include to the suite giving you a full credit for the new testing method. If you have such idea, please contact us.

System requirements

SSTS is designed for Windows XP Service Pack 3 with Internet Explorer 8. Various tests may be compatible with other Windows versions and browsers too, but the functionality is not guaranteed there.

Commercial or business related usage

SSTS is distributed free of charge for noncommercial private use only. For the full licence information, read licence.txt file of the SSTS archive. For using SSTS for commercial or business related purposes or for the purpose of creating content of a publicly accessible web site or for extensive or mass software testing, you have to buy a licence and can not use SSTS for free and/or distribute it on the web site. Please contact our sales department to get more information.