Eicon Networks S92 Manual do Utilizador descarregar pdf (Página 142)

YuChakTinMichael‘sGIACGCFWProjectAssignment

Page 142

ToolsoftheTrade

Toperform an auditagainstthefirewallsystems,weneedthehelpofsomesoftware

tools.Thesetoolscanbeclassifiedintotwocategories:ScanningtoolsandStressTest

tools. Toensureaccurateresults,foreachtypeoftestweuseproductsof identical

naturefrom atleasttwodifferentvendors.Differentresultsetscanthenbe

consolidatedforfurtheranalysis.

Scanners:

n forthediscoveryofnetworkandsystem vulnerabilities

n suitableforbroadscanningatthenetworklevelagainstthefrontlineroutersand

firewalls

Retina(basedonNMAPtechnology)

RetinaisacommercialaudittoolbasedontheNMAPtechnology.

“Acknowledgedasthefastestvulnerabilityassessmentscanneronthemarkettoday,

Retinaisdesignedscananymachineonaninternet,intranet,orextranetnetworkin

ordertoidentifyexistingvulnerabilitiesandcheckadherenceofestablishedsecurity

policies.Retinaprovideshelponfixingidentifiedvulnerabilities,andproducesa

Thisisespeciallytrueforscanning.Differentscannersusedifferent

technologiesandtargetportlists,whichforsurewilldeliverdifferentresults.

Onemightarguethatsuchdisagreementinresultscanbeminimizedby

instructingthescannertoscanthrougheverysingleport.Suchstrategyis

technicallypossible,butisextremelytimeconsumingandisnotpracticalin

oursituation.

1 2 ... 137 138 139 140 141 142 143 144 145 146 147 ... 208 209

Sem comentários

Eicon Networks S92 Manual do Utilizador Página 142