审计网络安全4.pdfVIP

Auditing Network Security Assessment Resources © 2005 Protiviti Inc. EOE Assessment Resources • Web Sites – Search engines – Information reconnaissance – Security education – Baseline configuration standards – Vulnerability databases – Security exploit repositories • Tools – Service/port detection – Enumeration tools – Network vulnerability scanners – Platform vulnerability scanners – Web application vulnerability scanners – Password cracking – Specific exploits Assessment Resources 2 Web Sites – Search Engines • The starting point for all information enumeration • Simple web searches can identify: – Web servers – IP addresses – Login interfaces – Administrative interfaces – Email addresses – Phone numbers • Recommended sites: – Assessment Resources 3 Web Sites – Information Reconnaissance • Provides contact information and company details regarding IP ranges • Recommended sites: – American Registry for Internet Numbers: – RIPE (Europe): – Asia Pacific Network Information Centre: – Latin American and Caribbean Internet Addresses Registry: • Lookup registration data for domain names owned • Search domains and lookup whois information • Recommended sites: – W: – Network Solutions – Whois search: /en_US/whois/index.jhtml – R: Assessment Resources 4 Web Sites – Security Education • Education is critical to stay current with changing security environment • Sites provide documentation, articles, tools, and standards to