Any IP (Internet Protocol) network can be assessed, whether your requirements is to ensure the security of publicly accessible networks, or bespoke assessment of internal networks, through onsite network security assessment. Security Matterz and Matta consultants can assess other network types on a bespoke basis, including DEC SNA and Novell IPX.
Risk Identification & Classification:
An important first step in improving the security of any network is to correctly identify areas of risk and set clear priorities in-line with business drivers. Security Matterz and Matta understand real world network risk and business impact, focusing primarily on three key areas during a network security assessment:
- Low-level network security and assessment of devices
- Operating System security policy and kernel settings
- Network service security, enabled features and configuration
A Security Matterz and Matta Network Security Assessment is not simply a penetration test, or a vulnerability assessment. Security Matterz and Matta assessment services are offered to clients with a specific business goal or driver in-mind.
Methodology:
A standard Security Matterz and Matta Network Security Assessment methodology of a given Internet-based IP network involves the following components:
- Use of automated vulnerability assessment tools (such as Nmap, Nessus, Whisker, NAI CyberCop, ISS Internet Scanner, and others depending on the application), to identify potentially vulnerable network components, and give an idea of the network’s integrity from opportunistic attack (such as script kiddies or worms that may be propagating).
- Collation and analysis of automated scan results by hand.
- Low level assessment of network components and security devices (IDS, Honeypots, Firewalls, packet filtering routers, et al) that may be in use. Tools such as Hping2, Firewalk and SING are used at this level to fully assess packet types that are not filtered correctly, and glean a good idea of network configuration and resilience from determined attack.
- Full qualification of all vulnerabilities by hand, actually testing each vulnerability in order to verify that each network component that is found to be vulnerable, actually is in the current network configuration. It is often the case that ‘false positive’ results are recorded by automated vulnerability assessment tools, where servers are not truly vulnerable in their network configuration.
- Proper classification of all vulnerabilities in-line with the business environment in which they are found. Often it is the case that when telnet is found to be open to an internal Unix-based server, the vulnerability is deemed medium risk, however if telnet was found to be open to a server in a highly sensitive and publicly accessible environment (such as online banking network segment), the risk would be deemed as high.
Upon performing technical assessment of the given network, and correctly qualifying and gauging true risk, a hand written report is prepared. Due to the fact that Security Matterz and Matta assessment reports are all hand written, the deliverable is completely bespoke and relevant to each client, their network and business environment. Common elements found in Security Matterz and Matta assessment reports include:
- An executive summary of our findings, with business impact discussion, and recommendations for the improvement of security.
- A full technical breakdown of each vulnerability identified, along with clear technical recommendations to negate the vulnerability or manage the risk at hand.
- Overall technical discussion of the network configuration and changes that could be made at firewall or network design level to improve the network resilience from attack.
- Security Policy Baseline
- Position & Strategy Formulation
- Security Awareness Program
- Application Security
- Oracle & SQL Server Security
- Vulnerability Assessment
- Penetration Testing
- SAP Security Services
- Wireless Testing
- Server / Forensic Audit
- Security Health Check & Risk Management
- ISO2700x & BS2599 Services
- Computer Forensics
- Social Engineering
- Firewall Rules Audit
- Network Security
- Implementation & Training Services
- Governance, Risk & Compliance
- Internal Network Audit & Wireless Security
Wireless Security
The AirPatrol WS 1000 wireless sensor delivers powerful wireless sensing capabilities with performance characteristics superior to any other currently available wireless sensor.
The AirPatrol CellSensor™ is the first device capable of accurately and reliably detecting and locating cellular phone devices on all commonly used bands without decoding their data packets.
.
Active Directory Optimization
Optimization is the process of changing the logical architecture of an Active Directory implementation to increase its security and ROI.
The Genesis architecture will quickly and simply optimise your Active Directory by implementing a pre-fabricated, production tested logical architecture that will instantly raise the security and ROI of the whole Windows Infrastructure.