Re: Vulnerability assessment for small business

email_at_neelsaxena.com
Date: 09/28/05

Next message: Sahir Hidayatullah: "Re: How to check for SSL1 ?"

Previous message: Thor (Hammer of God): "Re: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""
Maybe in reply to: Billy Dodson: "Vulnerability assessment for small business"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 28 Sep 2005 20:42:00 -0000
To: pen-test@securityfocus.com

('binary' encoding is not supported, stored as-is) I performed a vulnerability assesment in a similar environment. It was Windows so I ran MSBA against all the machines on the LAN together. Luckily all local admin passwords were the same.

I'd question why they have 25 different pcs in a peer-to-peer topology. Doesn't seem very efficient. Especially when it comes to security patch deployment. Do the users go to their own machine one by one to apply patches? That's probably too cumbersome and you'll proibably find missing patches on a number of those machines. You vuln assesment could include security process and procedures.

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner:

Hackers are concentrating their efforts on attacking applications on your
website. Up to 75% of cyber attacks are launched on shopping carts, forms,
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are
futile against web application hacking. Check your website for vulnerabilities
to SQL injection, Cross site scripting and other web attacks before hackers do!
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Next message: Sahir Hidayatullah: "Re: How to check for SSL1 ?"

Previous message: Thor (Hammer of God): "Re: Password "security" - was"Passwords with Lan Manager (LM) under Windows" and "Whitespace in passwords""
Maybe in reply to: Billy Dodson: "Vulnerability assessment for small business"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

RE: PT Activity duration/time
... Vulnerability Scanning - 10% ... Audit your website security with Acunetix Web Vulnerability Scanner: ... Hackers are concentrating their efforts on attacking applications on ... Up to 75% of cyber attacks are launched on shopping carts, ...
(Pen-Test)
RE: 3rd party vuln assesment firms
... > "We use the same tools hackers bring to bear against your systems. ... >> I'm looking for a firm to conduct annual 3rd party vulnerability ... Up to 75% of cyber attacks are launched on shopping ... >> your website for vulnerabilities to SQL injection, ...
(Pen-Test)
Re: Hacking to Xp box
... I think there was a misunderstanding in the firewall point: ... you need to find some vulnerability that could be ... > restricts most of the attacks that use anonymous connections. ... > Audit your website security with Acunetix Web Vulnerability ...
(Pen-Test)
Re: Hacking to Xp box
... I think there was a misunderstanding in the firewall point: ... you need to find some vulnerability that could be exploited to run ... > restricts most of the attacks that use anonymous connections. ... > Audit your website security with Acunetix Web Vulnerability Scanner: ...
(Pen-Test)
FW: 3rd party vuln assesment firms
... > Audit your website security with Acunetix Web ... > Vulnerability Scanner: ... > Hackers are concentrating their efforts on attacking ... Up to 75% of cyber attacks are launched on ...
(Pen-Test)