| Intranet
Vulnerability Assessment
|
| Not
many years ago during our training
presentations, we were discussing
the need for filtering routers
and firewalls to protect companies
from the Internet. Most of those
attending our lectures didn't
have them (yet). At that time,
there was a very small selection
of firewall vendors and products
to choose from. And those which
were available were expensive,
difficult to administer properly
and problem-ridden. |
| Times
have changed.
|
| Now,
firewalls are more easily administered,
inexpensive, and provide a reasonable
number of features. They're
good values... and companies
are now resting easier with
exposure to the Internet because
the routers and firewalls have
been doing a relatively good
job. |
| BUT,
what about the internal network?
The Internet Jurassic period
of Corporate America (pre-Firewalls)
had employees using their systems
and networks which had 25, 30
or more years' of service with
the Company. Employees in the
Jurassic period were loyal.
The word 'downsizing' hadn't
yet been invented. The word
'contractor' meant a person
who built homes. |
| Not
so today. |
| Today,
our internal networks have contractors,
vendors, temporary and part-time
employees with authorized access
to our most critical systems.
Vendors always want root or
administrator privilege. Contractors
and part-time programmers want
the same level of authority
on the machines so they aren't
inconvenienced while coding.
These are all security and audit
concerns which need to be addressed. |
| We
provide vulnerability scans,
and specialize in them... whether
NT, Unix, or Network Elements.
Countermeasures will send in
our Tiger Team on-site, connect
to your network, and provide
your audit and security personnel
with a formal report of our
findings. Our perception of
the network and systems will
be from the opportunity level
of the vendors and contractors
(and disgruntled employees)
who have 'native network' access
on your LAN segments. Wide open
shares on Microsoft NT, 95/98,
NFS mounted to the world on
Unix systems and other vulnerabilities
will be identified and provided
-- in detail -- to your audit/security
staff. We'll also provide you
with a list of recommendations
which will allow your administrators
to minimize the vulnerabilities
without breaking something.
|
| We
do much more than just run a
single product against the network
and walk away. We 'pick the
wings' off of each machine on
the network and roll up our
sleeves in order to identify
as many vulnerabilities as possible. |
| We'll
also identify accounts using
weak, easily-guessed passwords,
user accounts who have left
your firm and should be deactivated,
and orphan files which cannot
be identified with a specific
user or application. |
| We
do this very cost-effectively,
and are well under the standard
price most firms charge to do
much less. |
