Wireless security assessment involves emulation of highly determined wireless attackers with access to high gain antennae and equipment capable of sniffing 2.4GHz 802.11b traffic from a distance. Low level analysis of wireless traffic is undertaken, including attempts to crack WEP encryption and compromise keys used to protect wireless data.
Risk Identification & classification:
Focusing primarily on three key areas during a wireless security assessment:
- Low-level network security, ARP spoofing and other threats
- Assessment of encryption and intrusion prevention techniques
- Assessment of accessible servers and devices at IP level
A Security Matterz and Matta Wireless Security Assessment is not simply a sniffing exercise, or a vulnerability assessment. Security Matterz and Matta assessment services are offered to clients with a specific business goal or driver in-mind.
Methodology:
A standard Security Matterz and Matta wireless security assessment methodology used to access a given 802.11b network includes the following components:
- Use of wireless sniffing equipment (usually a Linux laptop with a Cisco Aironet network card and series of high gain antennae) to effectively identify and categorize all 802.11b traffic eminating from a given site.
- Low level assessment of wireless network topology and integrity using a plethora of tools including Kismet, Ethereal and in some cases commercial windows packages such as ISS wireless scanner, NAI Sniffer Wireless and Wildpackets Airopeek.
- Offline assessment of encryption through dictionary attacks against ASCII derived WEP keys and exhaustive keyspace searches against strong 40 and 104-bit key lengths.
- Use of tools such as Ettercap to modify the MAC address of the wireless network card to override MAC filters on access points and other low level security features.
- Upon compromising WEP encryption, simple application of Security Matterz and Matta Network Security Assessment methodology to enumerate IP devices and networks, and assess the level of access to internal network spaces.
Client deliverables include a hand written report, clearly documenting the current state of wireless network security, and recommendations for improvement to access point configuration and use of security mechanisms such as IPsec VPN technologies, intrusion detection systems (IDS) and filtering devices.
- Security Policy Baseline
- Position & Strategy Formulation
- Security Awareness Program
- Application Security
- Oracle & SQL Server Security
- Vulnerability Assessment
- Penetration Testing
- SAP Security Services
- Wireless Testing
- Server / Forensic Audit
- Security Health Check & Risk Management
- ISO2700x & BS2599 Services
- Computer Forensics
- Social Engineering
- Firewall Rules Audit
- Network Security
- Governance, Risk & Compliance
- Internal Network Audit & Wireless Security
Wireless Security
The AirPatrol WS 1000 wireless sensor delivers powerful wireless sensing capabilities with performance characteristics superior to any other currently available wireless sensor.
The AirPatrol CellSensor™ is the first device capable of accurately and reliably detecting and locating cellular phone devices on all commonly used bands without decoding their data packets.
.
Active Directory Optimization
Optimization is the process of changing the logical architecture of an Active Directory implementation to increase its security and ROI.
The Genesis architecture will quickly and simply optimise your Active Directory by implementing a pre-fabricated, production tested logical architecture that will instantly raise the security and ROI of the whole Windows Infrastructure.