Network Audits -
An External Review is an audit done remotely "off-site" from the outside of the firewalled environment. This is first performed blind, then with knowledge of the systems, The penetration tests are used to determine the extent and risk (if any) of an external attack. This audit is good for testing the configuration of a firewall and the respective WWW, ftp, email and other network services.
This scan and simulated attack can be performed remotely over the Internet. Preferably, this phase should be performed with limited disclosure (blind to all but select management) as an unscheduled external penetration assessment.
Penetration tests will be limited to probes as to not cause disruption of business (in any manner).
Optionally (a) this may include attack and evaluation of modem dialup and physical security. This procedure is used to scan and detect misconfigured dialups and terminal servers as well as rogue and unauthorized desk modems.
Optionally (b) social engineering techniques can be attempted during this audit. Many experts consider social engineering to be the biggest threat to the security of most organizations.
Optionally (c) If this audit is aimed at securing a WWW site. Source code audits of the CGI, Java, JavaScript, activeX, and other dynamic processess is advisable.
Typically, this type of audit may take one to three days depending on the site, network connectivity and complexity of services. If WWW site source review is requested more time will be required.
Audit Techniques -
As audits are being performed, a detailed, timestamped log is maintained of all actions. This log is used in the further testing of your sites logging facilities by the comparison on out teams logs and your companies site logs.
Penetration tests will be limited to probes as to not cause disruption of business (in any manner).
The tools used in these tests are up to date releases. Many of the tools are available on the internet to any hacker with the time and desire to find them.
Let us find the holes in your system before someone else uses them to exploit your resources, damage your files, steal information, or otherwise disrupt your activities.
All audits are done only with written permission from a company officer on company letter head. If necessary a hold-harmless will be requested.
Other Network Services:
General Security Policy Consultation
System Configuration Monitoring Tools
Firewall and Proxy Server Implementation
VPN and VLAN Installation
Encryption Implementation
Dedicated Linux Servers
Offsite Remote Security Management
