Scanning and Auditing
Subcategories
Sort
A System of Persistent Baseline Automated Vulnerability Scanning and Response in a Distributed Unive
This paper describes and analyzes a persistent automated baseline
vulnerability scanning procedure in a university (“The University”), including
preparation, response, and follow up procedures. A Ruby script called
run_nxscan.rb, written by the au...
Beware the Default Password
During the course of a recent security audit I was rather surprised to find a critical system still running with a default password.
Netcat for the Masses
Dean DeBeer submits this paper on usage of the swiss army knife of technology, Netcat.
Employee profiling: A proactive defense against insider threats
Employee profiling is one technique to combat malicious insiders, but organizations should tread carefully. As identity and access management expert Joel Dubin writes, protecting data and systems against insiders with criminal intentions requires a m...
Application of the Survivable Network Analysis Method to Secure My Office System
This paper addresses the results of applying the Survivable Network Analysis method to my office system. A brief overview of the method will be presented followed by a detailed description of the method. The method consists of four basic steps which ...
Auditing a Systems Security Consultant's Laptop Running Fedora Core 2
The purpose of this report is to illustrate the process of auditing and verifying conformance to specific policies, procedures, security guidelines and best security practices of a systems security consultant's laptop. The laptop belongs to Siriu...
B.A.S.E – A Security Assessment Methodology
At a fundamental level, much like a chain, the Internet is a collection of organizations' business networks inter-linked that form the digital infrastructure of the world. This infrastructure forms a global information grid that harnesses the pot...
Battle for the Internet: The War is On!
There is a battle raging between security professionals and hackers. By placing people into the shoes of a hacker, and teaching them the skills to gain access to a system, one is better able to defend against them. As a hacker, we dig up information ...
Conducting a Security Audit: An IntroductoryOverview
The word "audit" can send shivers down the spine of the most battle-hardened executive. It means that an outside organization is going to conduct a formal written examination of one or more crucial components of the organization.
Current SNORT User Manual
Snort really isn't very hard to use, but there are a lot of command line options to play with, and it's not always obvious which ones go together well. This file aims to make using Snort easier for new users. Before we proceed, there are a fe...
Add this list to your website
Copy and paste this javascript into your webpage to show a dynamic list of papers in this category. More information
here
Page: 1 2
