CIR Professional
A free online service is good. Having the full power of the analysis
framework at your hands and being able to automatically process any core
dump files on your own systems is better.
Accordingly, while we continue to develop CIR for the Online Service,
the code base will also be geared towards single system use, so it
can be used on mobile computers while on the road and away from any
serious Internet connection. Alternatively, the FTP server receiving
core dumps from crashed routers could automatically process the
dumps and send a full report by email to the network engineering
team.
Available Versions
CIR is fully modularized. However, plugins depend on each other for
gradual reconstruction methods, features usually depend on others.
Recurity Labs currently plans to release CIR Professional in the
following variants. All variants come with free upgrade and support
for one year.
Base Distribution
- CIR Engine
- XML/HTML Reporting
- Graphical User Interface
- Command line interface
- Plugin set for life dumps and post-mortem analysis
Forensics Addon
- PCAP Packet extraction plugin
- Additional stack analysis methods
Platform Support
CIR support for different Cisco® IOS® hardware platforms
is available as individual plugins. Supported platforms are
actively maintained with all upcoming IOS® versions. Each
platform plugin can be purchased individually, depending on your
needs.
Currently available, fully supported platform plugins are:
Further platforms will be supported depending on interest, as
fully supported platforms require significant work.
Requirements
CIR runs on any Microsoft® Windows® platform supporting the
.NET framework 2.0.
We are very interested to hear your feedback,
whishes and requirements for a professional version.
If you are interested in obtaining a CIR Professional version right
when it is released, don't hesitate to
get in contact with us.
Consulting
For consulting services around Cisco IOS device inspection and crash cause
analysis, please see
recurity-labs.com.