In NSS Labs’ recent Breach Detection Systems (BDS) test, Fortinet failed to achieve 100 percent detection in some of the evasions test categories (v1.43 build 0120). After working closely with NSS, Fortinet rolled out a new software fix (v2.10 build 0081) to address this issue. This was subjected to testing in our labs using the BDS methodology v2.0 and was found to detect 100 percent of the packers, compressors, virtual machine, and sandbox evasions. Although Fortinet improved its overall evasion score by 8.5 percent, the software fix still failed to detect 100 percent of the HTML obfuscation and layered evasions. For greater detail, reference our updated SVM Toolkit.
Follow us on Twitter (@NSSLabs) to keep informed as new research is released.