Hacking Tools Archive

« Older Entries
Newer Entries »

Tenable Network Security Podcast Episode 151 – “The Year in Tenable Product Features”

Posted December 19, 2012 By

Welcome to the Tenable Network Security Podcast Episode 151

Announcements

The Year in Tenable Product Features

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

Compliance Checks

Nessus ProfessionalFeed and SecurityCenter customers can download compliance checks from the Tenable Support Portal.

Stories

  1. Cisco Wireless LAN Controller Flaw Permits Cross-Site Request Forgery Attacks
  2. Hacker nabs Yahoo! site backups
  3. Samsung devices vulnerable to dangerous Android exploit

View full post on Tenable Network Security
http://www.GregoryDEvans.com, http://HackerForHireinternational.com, http://www.hackerforhireusa.com, AmIHackerProof.com

High Tech Crime Solutions

Filed in Hacking Tools | Tagged: , , , , , , ,

Detecting Compromised SSL Certificates Using Nessus

Posted December 13, 2012 By

When Thieves Target SSL Certificates

SSL is one of the most commonly used protocols to provide encryption for a variety of different applications. As such, it has come under great scrutiny over the years. While SSL misconfiguration is commonplace, one of the more recent attacks against SSL is to steal the Certificate Authority (CA) certificate. (In a paper released in July 2012, NIST warned that this type of attack would increase). Access to this certificate allows the attacker to issue valid certificates, and in the case of a code-signing certificate, use it to sign malware. Malware executing with this level of trust increases the chances of successfully being installed on the system. Other CA certificates are used to generate website certificates used by attackers to impersonate secure access to a given website.

StealingCookies

Attackers stealing CA certificates has become more common. Don’t think of it as stealing a cookie (or three), but more like attackers stealing the recipe to make their own cookies (and not the ones used between web browsers and web applications).

The attacks described above provide great return on investment (ROI) for attackers. By compromising one system and stealing the CA certificate, they can often turn around and compromise several more systems. The attacks tend to remain undetected for some time as they implement valid certificates that do not generate web browser errors. Fortunately, once the compromised certificate has been identified, it can be revoked, making future usage invalid. In addition, the offending certificate can be identified and revoked in your environment.

Finding Compromised Certificates

Nessus has several plugins to detect this type of vulnerability, including:

Three more SSL CA certificates were compromised, and associated Nessus plugins exist to detect them:

One further condition related to SSL certificates, can also be detected by Nessus. As the description states, “These signature algorithms are known to be vulnerable to collision attacks. In theory, a determined attacker may be able to leverage this weakness to generate another certificate with the same digital signature, which could allow him to masquerade as the affected service.”

Conclusion

SSL is a protocol based on trust, and when a CA certificate is compromised, the chain of trust is broken. Attacks against SSL can compromise sensitive data and credentials, making them a high-risk threat to your infrastructure. By applying updates from the vendors and certificate authorities, the chain of trust can be repaired. To ensure that all of the updates have been implemented, Nessus and SecurityCenter customers can check for compromised certificates as part of our continuous monitoring platform.

View full post on Tenable Network Security

Hi Tech Crime Solutions


http://HackerForHireinternational.com, http://www.hackerforhireusa.com, http://hiphopsecurity.com, http://www.Locatepc.net

Filed in Hacking Tools | Tagged: , , , ,

Tenable Network Security Podcast Episode 150 – “SSH Vulnerabilities, Password Log Book”

Posted December 12, 2012 By

Welcome to the Tenable Network Security Podcast Episode 150

Announcements

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

Compliance Checks

Nessus ProfessionalFeed and SecurityCenter customers can download compliance checks from the Tenable Support Portal.

Stories

  1. But did she STEAL the iPhone? App takes photo of woman trying to unlock it
  2. Amazon.com: The Personal Internet Address & Password Log Book
  3. Rethinking the Computer at 80 – NYTimes.com
  4. Proxmark 3, now with more Android – SpiderLabs Anterior
  5. Ira Winkler: Stupid users, or stupid infosec?
  6. No password is safe from this new 25-GPU computer cluster
  7. GhostShell hackers release 1.6 million NASA, FBI, ESA accounts
  8. Carnal0wnage & Attack Research Blog: On Sophistication

View full post on Tenable Network Security
http://www.GregoryDEvans.net, http://TheCyberWars.com, http://hiphopsecurity.com, http://ParentSecurityOnline.com

Hi Tech Crime Solutions

Filed in Hacking Tools | Tagged: , , , , , , ,

Configuration Auditing Cisco Nexus Operating System (NX-OS) with Nessus

Posted December 11, 2012 By

Recently, Tenable added audit files for Nessus ProfessionalFeed users allowing them to audit device configurations based on Cisco Nexus Operating System (NX-OS). Cisco NX-OS runs on high-end Nexus switches, MDS storage switches, and Cisco UCS networking. This audit follows most of the recommendations that are included in the Cisco Guide to Securing Cisco NX-OS Software Devices. This blog entry discusses some of the Nessus functionality that was used in creating the audit file.

The Cisco guide covers three major sections: the management plane, the control plane, and the data plane. The audit file itself is a best-effort attempt to cover all the sections included in the guide. Most checks include recommended values, whereas some require user configuration.

Most of the checks for users and passwords, services, management UIs, etc. are contained in the management plane section of the Cisco Guide and the audit file. Below is an example of the Compliance Summary view reporting several high severity issues:

NX summary sm

For those who want to dig right in and audit your Cisco NX-OS devices, below is a walkthrough of the configuration auditing parameters for this platform:

Management Plane

&ltitem&gt
type : CONFIG_CHECK_NOT
description: "Enforcing Strong Password Selection - 'no password strength- check does not exist'"
info : "Password checking can be disabled using the no password strength-checking command. This command should not be used."
?info : "ref. http://www.cisco.com/en/US/prod/collateral/switches/ ps9441/ps9402/guide_c07-665160.html#wp9000042"
item : "^no password strength-check" 
&lt/item&gt

Control Plane

The control plane section of the audit is where checks for protocols like ICMP and services like NTP configuration can be found. The following check determines if an NTP server is configured.

# Please update {NTP_SERVER} with the appropriate value for the local environment
&ltitem&gt
type : CONFIG_CHECK
description: "NTP - 'ntp server is configured'"
info : "The Network Time Protocol (NTP) synchronizes the time of day among a set of distributed time servers and clients so that you can correlate"
info : "events when you receive system logs and other time-specific events from multiple network devices."
info : "ref. http://www.cisco.com/en/US/prod/collateral/switches/ ps9441/ps9402/guide_c07-665160.html#wp9000428"
info : "NOTE: Update {NTP_SERVER} with the appropriate value for the local environment."
# example item
# item : "^ntp server 1\.1\.1\.1"
?Generated by Jive on 2012-12-05-05:00
2
Research:Compliance: Auditing Cisco Nexus Operating System (NX-OS) Compliance with Nessus
?item : "^ntp server {NTP_SERVER}" 
&lt/item&gt

In this example, # item : “^ntp server 1\.1\.1\.1” demonstrates how to escape the dots in the IP address so that a value like 121.1.1.x would not give a false result.

Data Plane

The data plane checks primarily verify that various IP options are configured correctly. IP source routes, IP redirects, and some ICMP filters are all items checked in the data plane section. An interesting example of the type of checks for the data plane is the TCP fragment checks like the example below.

?
&ltitem&gt
type : CONFIG_CHECK
description: "Filtering IP Fragments - 'deny tcp any any fragments exists'"
info : "Because of the non-intuitive nature of fragment handling, IP fragments are often inadvertently permitted by ACLs. Fragmentation is also"
info : "often used in attempts to evade detection by intrusion- detection systems. For these reasons, IP fragments are often used in attacks and"
info : "should be explicitly filtered at the top of any configured tACLs."
info : "ref. http://www.cisco.com/en/US/prod/collateral/switches/ ps9441/ps9402/guide_c07-665160.html#wp9000533"
item : "deny tcp any any fragments" 
&lt/item&gt

Additional checks like this are also included for UDP, ICMP, and IP fragments.

Logging Best Practices

In addition to the recommendations for each of the plane categories, another section of the audit file verifies several logging functions. Much like the NTP example above, the included checks for things like the local syslog server are built to accommodate local customizations.

Please update {LOGGING_SERVER} with the appropriate value for the local environment.

&ltitem&gt
type : CONFIG_CHECK
description: "Send Logs to a Central Location - 'logging server is configured'"
info : "After implementing centralized logging, an organization must develop a structured approach to log analysis and incident tracking."
info : "Depending on the needs of the organization, this approach can range from a simple, diligent review of log data to an advanced rule- and"
info : "role-based analysis of multiple factors using correlated data." info : "ref. http://www.cisco.com/en/US/prod/collateral/switches/
ps9441/ps9402/guide_c07-665160.html#wp9000343"
info : "Update {LOGGING_SERVER} with the appropriate value for
the local environment"
# example item
# item : "^logging server 1\.1\.1\.1"
item : "^logging server {LOGGING_SERVER}" 
&lt/item&gt

The logging best practices also include checks to validate that the scheduler service is enabled and customizable checks to validate that scheduled configuration checkpoint backup jobs have been defined.

Conclusion

Tenable audit compliance policies for Cisco NX-OS products can be downloaded by logging into the Tenable Support Portal and selecting the Downloads link. There are 60+ individual audit checks spanning most of the configuration items identified by Cisco in their document.

View full post on Tenable Network Security
http://www.GregoryDEvans.com, http://www.computersecurityguru.com, http://www.hackerforhireusa.com, http://ParentSecurityOnline.com

Hi Tech Crime Solutions

Filed in Hacking Tools | Tagged: , , , , , , ,

Introduction to new and now available SecurityCenter 4.6 and PVS 3.8

Posted December 6, 2012 By

View full post on Tenable Network Security
http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

High Tech Crime Solutions

Filed in Hacking Tools | Tagged: , ,

Plugin Spotlight: Samsung/Dell Printer Firmware SNMP Backdoor

Posted December 5, 2012 By

Samsung Printers Contain an SNMP Backdoor

Samsung is not the most well-known printer manufacturer in the world (although they hold 28.5% of the consumer TV market). However, they manufacture a full line of printers and multi-function devices for both home and business use. Samsung also manufactures “some” printers for Dell, though an official list is currently unknown.

On November 28, 2012, US-CERT issued an advisory warning that select Samsung/Dell printers contained a hardcoded backdoor that could be accessed via SNMP. There are a lot of interesting facts surrounding this vulnerability, including:

  • The backdoor SNMP service listens on a non-standard UDP port 1118
  • The password for the backdoor is “s!a@m#n$p%c” and allows both SNMP reads and writes. This allows an attacker to change the configuration settings, including resetting the username/password to the device to gain full administrative access
  • Researchers report firmware dating back to 2004 contains this same password for the SNMP community string
  • If SNMP is disabled on the printer, it does not remove the SNMP backdoor on port 1118
  • Before the vulnerability went public, Samsung pulled all the printer firmware from their download sites
  • Dell printer firmware remains on Dell’s website for download.

Samsung has stated that models released after October 31, 2012, are not affected by this vulnerability. However, a full list of vulnerable printer models and firmware revisions has yet to be published.

The Tenable plugin-writing team has pushed a new plugin into the Nessus feed, Samsung / Dell Printer SNMP Backdoor (plugin id 63136). This plugin allows you to scan your network for vulnerable Samsung/Dell printers, a handy tool since the vendor in this case is not specifying which devices and firmware contain the backdoor! Below is the plugin output:

Snmpbackdoor new small

Click for larger image.

Note: You must configure your Nessus scan policy to scan printers. When creating the policy be certain to go to “Preferences” -> “Do not scan fragile devices” and check the box labeled “Scan Network Printers“.

This allows you to discover the vulnerable printers and multi-function devices on your network, even without a full list of vulnerable models from Samsung. To further enhance detection of this vulnerability Passive Vulnerability Scanner customers can utilize PVS plugin 6639, Samsung / Dell Printer SNMP Backdoor. Passively sniffing for this vulnerability allows you to detect vulnerable printers that may have slipped through the cracks of your active scanning (e.g. the printers were offline during the scan or blocked by a firewall).

View full post on Tenable Network Security
http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Hi Tech Crime Solutions

Filed in Hacking Tools | Tagged: , , , , , ,

Tenable Awarded Common Criteria Certification EAL2+

Posted November 30, 2012 By

View full post on Tenable Network Security

Hi Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , , ,

Nessus VMware vCenter Patch Auditing Now Available

Posted November 30, 2012 By

View full post on Tenable Network Security

Hi Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , , ,

Tenable Network Security Podcast Episode 148 – “vCenter Nessus Support, Samsung Firmware Backdoor”

Posted November 28, 2012 By

Welcome to the Tenable Network Security Podcast Episode 148

Announcements

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

SecurityCenter Reports

Stories

View full post on Tenable Network Security

Hi Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , , , , , , , ,

Tenable Network Security Podcast Episode 147 – “HTML5 General Availability, User Security Awareness”

Posted November 20, 2012 By

Welcome to the Tenable Network Security Podcast Episode 147

Announcements

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

Compliance Audit Checks

  • Coming soon: Auditing MS Office and Sharepoint

Stories

View full post on Tenable Network Security

Hi Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , , , , , , ,

Nessus HTML5 Interface is Generally Available!

Posted November 20, 2012 By

Thank you for providing feedback on the Nessus HTML5 beta interface. The beta feedback period is now closed, and the Nessus HTML5 interface is generally available (GA) to Nessus ProfessionalFeed and Nessus Perimeter Service customers, as well as Nessus HomeFeed users. To access the Nessus HTML5 interface, visit https://nessusserver:8834/html5.html (replace “nessusserver” with the IP/hostname of your Nessus server).

We’ve published a short video introduction which summarizes how to use the new HTML5 interface. The video walks you through how to create a new policy, create a new scan template, launch a new scan, and review results in the new HTML5 interface:

Nessus HTML5 Introduction Video (For more videos, please visit the Tenable Network Security YouTube Channel.)

On November 26th, HTML5 will become the default Nessus interface, but you’ll continue to have the option to use the Flash interface if you prefer.

Accessing Nessus from a mobile device is easier than ever before, as you can use all of the interface features in HTML5. Mobile Apps for Android and iOS will still function, but the new HTML5 interface will provide a more robust user experience.

Iphone backup2

The Nessus HTML5 interface being accessed from an iPhone.

You can view several more screenshots of the HTML5 interface and review the list of supported browsers here. For detailed HTML5 interface usage instructions, please refer to the Nessus 5.0 HTML5 User Guide. For ProfessionalFeed or Perimeter Service customers who have questions about the HTML5 interface, please contact the Tenable Support Team. Nessus HomeFeed users may consult the Tenable Discussion Forum.

View full post on Tenable Network Security

Hi Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , ,

Tenable Network Security Podcast Episode 146 – “Is AV Dead?, Auditing Firewalls”

Posted November 15, 2012 By

Welcome to the Tenable Network Security Podcast Episode 146

Announcements

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

Compliance Audit Checks

Stories

  • Hack.me – Build, Host & Share Vulnerable Web Application Code – Looks like a pretty neat free service to let you practice web application scanning. I cannot stress this enough, the best way to learn how to find web application vulnerabilities is just to dive in and do it. Practice makes (almost) perfect. While applications are very different, the techniques to find vulnerabilities only vary slightly.
  • Side-Channel Attack Steals Crypto Key from Co-Located Virtual Machines – Don’t go running to pull all of your systems and applications out of the cloud just yet. This represents a highly-sophisticated attack at the moment, but one you should be aware of if you’re using cloud services and/or virtualization, which at this point, is everyone.
  • Apple’s iOS 6.0.1 still has Wi-Fi bugs – The real kicker here is that if you don’t upgrade to 6.0.1, you’ll miss out on security fixes. If you do upgrade, you may experience severe problems with your Wi-Fi. Try to be secure all you want, function will win over security every time.
  • Cisco TACACS+ Authentication Bypass – It’s always fun to actually dig into the details of a given vulnerability to see what it’s all about. If it’s your job to evaluate risk of the vulnerabilities affecting your organization, you’ve got a heavy dose of reading to do on a regular basis. I dug into this one and found that if you’re using TACACS+ in conjunction with LDAP on Cisco ACS platform, an attacker can do this: “…exploit this vulnerability by sending a special sequence of characters when prompted for the user password.” That means there’s a “magic” password. Any guesses as to what that value could be? 1-2-3-4 anyone?
  • Is AV Dead?“I just think it’s lazy developers.” This is a very light-hearted look at the problem of AV software and a bit about malware. “The world isn’t just black and white anymore. But it’s all binary…”
  • One in four don’t clean their stinky old browsers – especially Firefoxers – Keep in mind where the study comes from: “The statistics were drawn from the web usage patterns of 10 million randomly selected Kaspersky Lab consumer customers worldwide, collected during August 2012. The data from business customers does not feature in the study.” Your job this holiday season is to convert grandma from Firefox to Chrome and teach her how to keep it updated…
  • Antivirus Firm Founder John McAfee Accused of Murder, Says He’s Innocent – I couldn’t not talk about this story, it’s the headline of the week for sure. Seems like John is a pretty eccentric guy, and I’m not sure you can believe everything you hear about this story as the facts change daily. However, sounds like he has a chemistry hobby that got out of control…
  • A history of hacking: Documentary captures essence of Def Con – Can’t wait to see this one, the culture of hackers always makes for great fun!
  • Microsoft Updates November 2012 – IE, Kernel+Shell, and .NET Critical Patches – Microsoft updates this week, as usual, get patching…All plugins for the vulnerabilities are in the plugin feed.

View full post on Tenable Network Security

High Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , , , , ,

Nessus Now Audits Juniper Junos Configuration

Posted November 12, 2012 By

Keeping Your Routers and Firewalls in Check

Continuing with the theme of helping you secure and maintain your critical infrastructure (see our previous post: “New Nessus Compliance Checks Available for Check Point GAiA“), we are pleased to announce the availability of Juniper Junos compliance checks. Junos is the underlying operating system (OS) powering Juniper’s routers, firewalls, and network switches.

Ensuring a consistent configuration across your entire network infrastructure contributes to a healthy and more secure network. For example, a configuration error could lead to an easily-exploitable weakness on devices (such as a clear-text management protocol or default SNMP community string settings). A successful attack against a router allows someone to sniff all the traffic passing through it, potentially accessing sensitive information or performing Man-in-The-Middle (MiTM) attacks.

New Compliance Checks

To provide Nessus users with a way to audit Junos router/firewall/switch security settings relating to the underlying OS, we’ve developed a set of checks based on the CIS Benchmark for Junos as a guide.

Below is an example of the audit results:

JunosCheck

The compliance checks for Junos download the configuration file from the device and use CONFIG_CHECK options to compare values. For example, below is the compliance check for section 6.16.2 of the CIS benchmarks for Junos:

&ltcustom_item&gt
  type         : CONFIG_CHECK
  description  : "6.16.2 Require Encrypted Configuration Files"
  info         : "Level 2, Scorable"
  regex        : "set system"
  expect       : "encrypt-configuration-files"
  info         : "Configuration files should be encrypted."
  info         : ""
  info         : "ref: https://benchmarks.cisecurity.org/tools2/CIS_Juniper_JunOS_Benchmark_v1.0.1.pdf pg. 169"
&lt/custom_item&gt

The above code block searches the configuration for the entry “encrypt-configuration-files” as the CIS Benchmark requires that configuration files be encrypted on Junos devices. If the “encrypt-configuration-files” entry is not listed in the results of the “Set system” command, the check will fail.

Conclusion

The addition of Junos compliance checks allows organizations to use Nessus (and SecurityCenter) to perform compliance auditing against Juniper’s line of routers, firewalls, and network switches. If you’ve standardized on this platform to run your network, this provides valuable information to help you secure your network. Nessus audits the security and policy compliance configurations of Windows, Unix, databases, and virtualization platforms as well. Correlating this information with other sources of vulnerability and events provides you with an in-depth look at the security of your enterprise.

Nessus ProfessionalFeed and SecurityCenter customers can download all the latest compliance checks from the Tenable Support Portal. For more information on using Nessus for compliance auditing, view the Nessus configuration and compliance auditing video.

View full post on Tenable Network Security

High Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , ,

New Nessus Compliance Checks Available for Check Point GAiA

Posted November 12, 2012 By

Keeping Your Firewalls in Check

Ensuring that your network infrastructure, in particular your routers and firewalls, is secure and maintains its integrity is critical to successfully defending your network. If an attacker were to gain control of these types of systems, they could potentially impact the security of your network as a whole. For example, an attacker with access to your firewall could read the firewall rules and use the information to selectively attack open services and create backdoors that would slip through your firewall.

New Compliance Checks

To provide Nessus users with a way to audit firewall security settings relating to the underlying operating system (OS), we now support the Check Point GAiA OS, implementing about 50 compliance checks for various settings based on best practices. The checks are for OS settings only and do not allow you to audit the firewall rules themselves. Below is an example:

Checkpoint gaia sm

The compliance checks for Check Point GAiA download the configuration files and use the CONFIG_CHECK options to compare values. For example, below is the compliance check for the Telnet service:

&ltcustom_item&gt
 type           : CONFIG_CHECK
 description   	: "telnet Service - 'set net-access telnet = off'"
 info          	: "Do not use plain-text protocols."
 regex         	: "set net-access telnet"
 expect        	: "set net-access telnet off"
&lt/custom_item&gt

The above code block searches the configuration for an the entry “set net-access telnet.” The “expect” statement checks to see if the setting is set to “off,” meaning Telnet is disabled. If the value is found to be something other than “off,” then the check fails and a high-severity alert is generated in the results.

Conclusion

The addition of Check Point GAiA compliance checks allows organizations to use Nessus (and SecurityCenter) to provide deeper coverage of compliance, configuration, and security issues. Nessus audits the security and policy compliance configurations of Windows, Unix, databases, virtualization platforms, and routers, with expanded coverage for firewalls. Correlating this information with other sources of vulnerability and events provides you with an in-depth look at the security of your enterprise. Nessus ProfessionalFeed and SecurityCenter customers can download all the latest compliance checks from the Tenable Support Portal.

For more information on using Nessus for compliance auditing, view the Nessus configuration and compliance auditing video.

View full post on Tenable Network Security

Hi Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , , , ,

Tenable Network Security Podcast Episode 145 – “Source Code Leaks, Problems with Computer Security”

Posted November 8, 2012 By

Welcome to the Tenable Network Security Podcast Episode 145

Announcements

New & Notable Plugins

Nessus

Passive Vulnerability Scanner

SecurityCenter Dashboards

Security News Stories

  1. Most U.S. Drones Openly Broadcast Secret Video Feeds | Danger Room | Wired.com
  2. Carnal0wnage & Attack Research Blog: The Biggest Problem in Computer Security
  3. Microsoft’s security team is killing it: Not one product on Kaspersky’s top 10 vulnerabilities list | The Next Web
  4. VMWare ESX Source Code Leaked On The Internet
  5. Sophos products and Tavis Ormandy | Naked Security
  6. Coca-Cola Was Hacked But Didn’t Tell Shareholders
  7. 1.7M mobile apps analyzed: Users tracked and put at risk, and it’s unjustified
  8. Security Headers on the Top 1,000,000 Websites
  9. Users take their time over Java and Flash updates

View full post on Tenable Network Security

High Tech Crime Solutions


http://www.GregoryDEvans.com, http://www.Locatepc.net, http://stolencomputeralert.com, http://computersecurityexpert.net, http://www.hackerforhireusa.com, http://www.GregoryDEvans.net, AmIHackerProof.com, http://ParentSecurityOnline.com, http://TheCyberWars.com, http://hiphopsecurity.com, http://HackerForHireinternational.com, http://www.computersecurityguru.com, http://computer-security-expert.com

Filed in Hacking Tools | Tagged: , , , , , , , , ,
« Older Entries
Newer Entries »

Join the mailing list

Check your email and confirm the subscription