Abstract
Medaudit is a healthcare/ medical device auditing tool that would help anyone auditing a healthcare networks and medical devices. At the time of writing, there are no tools - commercial or free - that can help security pentest healthcare infrastructure. This tool aims to close that gap and help security analysts use their web app skill set to analyze medical devices. The tool support HL7 protocol right now and will have support for FHIR and DICOM in near future.
The tool does the following things:
- Create a visual map of HL7 traffic flow on a network (Passive analysis), extract HL7 traffic on the network.
- Scan and verify for open HL7 ports on a host
- Perform DOS attacks against HL7 streams on HL7 reciever
- Send HL7 messages (malformed attacks)
- Fuzzer
- Malicious HL7 Server
The tool also acts a proxy using web API so you can reuse web application tests on medical devices.