Security Vulnerability Assessment

 

Vulnerabilities and Active Services

Latest Update 25 Jan 08 Conquer Hacking on YouTube !!- how to defend yourself against hackers, intruders.

 

Another important computer security area to check is Operating System security vulnerabilities and active services.

One of the method that hackers are able to hack into a computer / server is by exploiting the vulnerabilities of the operating systems or via active services in the server. Don't be surprised there may be other active Windows services running in your PC or Server that you do not require. You do not conquer hacking but with these services and Operating Systems patches uptodate, it is harder for hackers to penetrate into your systems.

I have conducted Security Vulnerability Assessment for a number of companies' servers and have observed services such as FTP, IIS, SMTP, SQL running in their servers that the administrators are not aware of.

The rule of thumb is ensure your server or PC is patched uptodate and unnecessary services disabled. If there is budget to spare, invest in a reputable IPS (Intrusion Prevention Systems) to complement the firewall.

An intruder with some basic attacking skills can break into a server (even remote control the server) by exploiting the vulnerabilities if they are not patched properly. Once the intruder has command line access to the server, he/she can then escalate to superuser status (there are a number of ways to do that). This is where real damage can be done.

Penetration Testing

Futher, he/she can then use this server as a platform to attack other servers. I have conducted penetration testing in a test environment and it is not that difficult to break into a Window server. So it is best that these threats are not taken lightly and secure them by applying the latest patches and disable services that are not required.

 

How to Check for Vulnerabilities

a) One of the tools to check for vulnerabilities and services is by running Nessus Vulnerability Scanner.

b) Once you have download and install Nessus, please ensure you get the latest vulnerabilities update so that it can detect the recent threats. This is a great tool as it is fast and simple to use.

c) Simply type in the IP Address for the server to be scanned and start the scanning.

d) Nessus will then produce a Web-Based report of the discovered vulnerabilities.

 

Nessus in action scanning a Windows Server. Notice the open ports and warning.

file1

 

 

This is part of Nessus report which states the risk and solution to this threat.

files2

 

Now we are going to look into Linux / Unix Logical security where we will hunt for scripts, inbuilt programs, files that intruder can take advantage to gain Root access to these system. A prior knowledge of Unix/Linux will help in this area.

 

If you wish to skip this section, check out the Network and IT Infrastructure in the Home Page.

 

COPYRIGHT 2007 Penetration Testing

 

About Gabriel Ng
Home

Hacking Demo on YouTube.com
Basic Protection Tutorial
How to Protect from Viruses
Trojans and Personal Firewalls
Spywares Prevention

 
Windows Hardening
Firewalls the Bastion Host
Security Policy
Server Vulnerabilities
Importance of Security Assessment
Disaster Recovery
Are Firewalls and Anti-Virus Adequate ?
Website Hacking Prevention

Security Books
WEP Wireless Security Stinks
 
 
 
 
 
 
Internet Security Advisor
Step by Step Guide to conduct Security Vulnerability Assessment