Now to say that there are many security tools available in BackTrack would be an understatement. In fact there is so many available that I would never start to list theme here. If you wish to see for yourself, simply execute the following within your terminal instance:

[code]
dpkg –list
[/code]

To be honest I have just recently begun experimenting with BackTrack and I have a great deal of learning ahead of me. For that reason I felt compelled to share the following video tutorials, books, and how-to guides that I could locate. Should you have any tips or resources please leave a comment.

Video Tutorials

Guides

• BackTrack User Guide from Braton Groupe sarl.

Books

SOPA “explained” by Guardian

Opinion Time

I must say that there are pros and cons that go along with SOPA and of course piracy is a problem and the internet of course helps to enable piracy but the answer is not SOPA in it’s current form. In fact according to ChadRocco, Rep. Lamar Smith refuses to take the concerns and complaints seriously.

There are many companies that have voiced opposition to SOPA and the list continues to grow each day. If you wish to see for yourself those who oppose SOPA, the Center for Democracy and Technology has compiled a list that you may want to review to understand the heavyweights who are behind this opposition. Also if you have the time, you will find some very interesting reading with the letters to Congress over SOPA.

So again I believe SOPA is a very bad idea in it’s current stage and like so many other bills surrounding technology that come out of Congress, I fell that Rep. Smith may mean well must one must ask the question is he doing this for the right reasons and does he truly understand the scope of the problem? I think not and in August 2011 another bill at Congress titled Protecting Children From Internet Pornographers Act of 2011 sounds good on the surface but this bill also presents problems in my mind.

Summary

Watch the following video and if you pay attention to the people in the background are uses their tablets and mobile phone while someone is reading the language of the proposed law which reinforces my opion that those involved not only do not understand the technology but choose not to listen when it is being spoken to.

In closing, I leave you with the following question. Is Congress equipped to address and enable laws around piracy to a level that will satisfy the supporters of SOPA without killing the Internet as we know it today? In fact, is the author of SOPA a copyright violator himself?

Introduction

The advent and rapid expansion of technology in modern times has provided an abundant deal of positive impact but at the same time has destabilized the security infrastructure of the United States as well as many other countries.  While current and future battles, at least in the short term, are fought by the Armed Forces, the battlefield of the future will be supported with coordinated cyber-attacks.  Never before in history have countries been attacked by foreign intelligence agencies, enemies of the state, or even activist groups using cyber tactics that occur today.  A number of fundamental day to day services are at risk and while the U.S. Federal Government have begun addressing cyber threats from a military standpoint (CBS News, 2011), the reality is that the infrastructure surrounding economic, public water works, electrical, and nuclear power plants face countless risk.  While it is unclear what role governments are to perform in terms of security in the private sector, it becomes apparent that businesses must make vital investments to ensure proper protections.  If you have any doubts that the infrastructure is at risk, consider for a moment in the time of war when manufacturers are distributing equipment to the military.  If an enemy is successful in taking down a power grid, the results are chilling.  The tactic of attacking infrastructure is not new but the ease of attacking these areas has never been easier.  To combat the problem, it is imperative to understand the threats and ultimately implement and sustain security.

The Cyber Threat

Cyber war is something that the population can only envision or turn to Hollywood for a glimpse into the possibility. In 2007, a movie titled Live Free and Die Hard was released where a small group attacked every aspect of the American economy termed as a “fire sale” which meant every part of infrastructure that make use of technology must be taken down. In theory, this type of attack is completely possible.

Threats are pertinent to both the government and public because of the interdependency of these entities, if one falls victim, the other feels the impact. The Department of Homeland Security determined that anyone attacking infrastructure would have to do so with multiple targets and over time, which in turn would propagate terror and cause the target to respond in a way that could either prevent the attack or even divert attention from another target (Lewis, 2002). Once put into context of how a virus, malware, or even something as basic as access control works, the reality is all of these components can affect a country in an adverse way that in turn ripples thru an infrastructure. In 2003, a virus known as SQL Slammer hit computer systems around the globe and impacted South Korea particularly hard. Because of this virus, South Korea experienced an internet outage that lasted nine hours, affected the citizens, and adversely affected e-commerce transactions (Hinde, 2003). This example must serve as a wakeup call for everyone! Stop for a moment and consider the possible outcome should a foreign state launch a cyber-attack on the United States where the target was air traffic control. The loss of life, impact to the airline industry, and the government would be tremendous and this type of attack is entirely feasible should any aspect of security fail.

Commercial and Government Targets

The Internet, while some would say is really still in the early stages of use, it is evident that over the last two decades over 30 countries have incorporated cyber warfare tactics into military and intelligence operations (Knapp & Boulton, 2006).  For the United States, there have been indications that China has been targeting both military and commercial systems.  Early in 2010, Google released a statement that they were victim of a breach in security by China and as the result; Google suffered theft of intellectual property (Lee, 2010).  Similarly William Mathews (2008) references a Security Review Commission report that stated “China is targeting U.S. government and commercial computers for espionage, and has developed cyber espionage capabilities so advanced that the U.S. may be unable to counteract or even detect the efforts.”  To further outline the where cyber warfare tactics are employed an in-depth study of remote access tools (RAT) perform by McAfee generated a number of interesting points (Alperovitch, 2011).  First, while there were vast amounts of data, the report outlined 71 attacks across a number of governments, technologies, and private sectors.  Not surprisingly, the U.S. has been victimized 10 to 40 times more than any other country.  At this point, the scale of cyber warfare starts to dictates that government bodies and private industry focus much more on security, no matter at what cost.  If cyber security fails to be addressed in a much more aggressive manner, then the alternative is unthinkable.

The Measure of Protection

Now that the groundwork surrounding cyber warfare is defined, as it is essential to understand the risk and it is also equally as important to raise awareness and implement a strong and comprehensive cyber security infrastructure.  There are wide variations of approaches in defining an achievable cyber security program that will place the tools and responsibility directly in the hands of every individual.  The challenges at times may seem insurmountable but persistence and attention to detail will always pay off in the end.  In order to address security there are two fundamental components which are the systems and the personnel.

Personnel Background Checks

The single common thread to any organization are people who make up the business and this is true for both private industry and the government.  In today’s modern age of computers, background checks of personnel becomes tremendously important.  The challenge with this process, while used at a number of governments agencies, is that the process is not typically used in the private sector and the reason may very well come down to cost and time.  At the state and federal level, one would think that everyone would undergo a background check however this is not always the case.  For example, mayors and governors generally do not hold a security clearance and are restricted to intelligence information (Kaiser, 2003).  In the modern brave new world of information technology, local, and foreign threats it is now imperative that any personnel that potentially require access to sensitive informative undergo a proper and complete security check.  Consider for a moment electric companies and what may occur should an individual who desires to bring down a power grid.  While this example may be unlikely, the reality is an organization and the public rely upon the individual performing a particular job.  The upfront cost would always justify security and ensure proper screening of personnel.

Personnel Training

The single largest threat to any organization is the person sitting at the keyboard and this is especially true for government bodies and companies that hold contracts with the government.  Training does not start or end with the before mentioned entities, rather training is imperative in all aspects of business.  As a deeper dive into personnel begins to occur, the numbers that arise begin to be alarming and this data greatly assist in terms of identifying and implementing training opportunities.  To further drive home the risk that personal bring to the organization Cisco (2008) performed a study that produced findings that only 17% of employees never used assets for personal use whereas 63% used assets at a minimum of once a day.  This same study yielded further details in terms or unauthorized access, password use, and physical security.  The hurdle is changing human behavior and the initial step is identification of the risks.  To ensure a training program is successful it takes a variety of measures, which include annual training, management buy-in, and finally being able to adapt to the changing threats.  Should an organization fail to have the expertise in house, there are organizations available that provide assistance such as the Information Technology Essential Body of Knowledge Framework (Conklin & McLeod, 2009).  Any comprehensive security program includes engagement of everyone and by doing so; everyone has a stake in security.

System Controls

Technology itself provides a vast array of opportunity to assist in terms of security and protection but it is also important to understand people manage technology at the end of the day.  System controls make up multiple aspects of technology, which include but are not limited to operating systems, secure coding, access control, and hardware.  Each facet presents its own unique solutions and problems.

Operating Systems

The foundation of every system is the operating system (OS).  The majority of vulnerabilities start at the OS level, (Edwards, 2011) and because of this, the organization is at the mercy of the vendor.  There are steps to lessen the vulnerabilities, which include a strong patch management process as well as establishing a baseline for OS distribution across the organization.  For example, Microsoft Windows by default ships with a number of services enabled that may result in ports being open when they should not.  A concise understanding of the features within an OS will provide for greater security in the end.

Application Security

Many organizations produce custom software to complete a given task.  While software greatly helps in the business process, it does not come without its own risk.  Since the beginning of software development, the problem of code injection has and will continue to be a problem.  While there are many solutions available that they are software based and it may be beneficial to look to hardware as a potential solution (Riley, Xuxian, & Dongyan, 2010) based upon the complexity and nature of the business process to be protected.  In fact, the Open Web Application Security Project (OWASP) produces a Top 10 list of security vulnerabilities and at the top of this list are injection attacks (OWASP, 2010).  Injection attacks come in a variety of options but the most common are structured query language (SQL) attacks because the likelihood of a database being in place is commonplace.

Conclusion

At this point, the gravity of security as applied to both countries and business should be a call to action.  The potential for destruction is obvious and the result may be financial or worse, loss of life.  For example, turning attention to 1945, the United States delivered an atomic payload via an air strike on Hiroshima, Japan, which drove Japan’s surrender of World War II.  Modern day enemies have the capability to launch a similar attack from a remote location with the use of the Internet.  The modern day landscape of warfare continues to evolve and the evidence of these tactics is evident in recent times with cyber-attacks that have been making news and how these vulnerabilities lead to exploits to serve a political and social agenda.

Modern day threat tactics are exploited on a continual basis and tend to evolve more quickly than the solutions.  Because of these threats a comprehensive security model is required that is both network and people centric.  Within this model, the points of interest will fluctuate from organization to organization but the point is to call out all characteristics of business.  As the threat surface begins to be analyzed; only then is it practical to implement both a plan and training to either diminish or in some cases eradicate the threat.

References

1. Alperovitch, D. (2011). Revealed: Operation Shady RAT. McAfee. Retrieved from http:// www.mcafee.com/
2. CBS News. (2011). Obama hands military new cyber war guidelines. CBS News. Retrieved on October 26, 2011 from http://www.cbsnews.com
3. Cisco. (2008). Data leakage worldwide: common risks and mistakes employees make. Cisco. Retrieved from http://www.cisco.com
4. Conklin, W., & McLeod, A. (2009). Introducing the Information Technology Security Essential Body of Knowledge Framework. Journal of Information Privacy & Security, 5(2), 27-41. Retrieved from http://www.ivylp.com
5. Edwards, C. C. (2011). Security: the new frontier. Engineering & Technology, 6(5), 80-83. doi:10.1049/et.2011.0508
6. Hinde, S. (2003). Cyber-terrorism in context. Computers & Security, p. 188. doi:10.1016/S0167-4048(03)00303-1
7. Kaiser, F. M. (2003). Access to classified information: seeking security clearances for state and local officials and personnel. Government Information Quarterly, 20(3), 213. doi:10.1016/S0740-624X(03)00040-6
8. Knapp, K. J., & Boulton, W. R. (2006). Cyber-warfare threatens corporations: Expansion into commercial environments. Information Systems Management, 23(2), 76-87. Retrieved from http://www.tandf.co.uk
9. Lee, M. (2010). Google attack puts spotlight on China’s “red” hackers. Reuters. Retrieved from http://www.reuters.com
10. Lewis, J. A. (2002). Assessing the risks of cyber terrorism, cyber war and other cyber threats. Center for Strategic and International Studies. Retrieved from http://www.csis.org
11. Matthews, W. (2008). Chinese Cyber Attacks On Rise: U.S. Report. Defense News. Retrieved from http://www.defensenews.com
12. OWAP. (2010). OWASP Top 10 Application Security Risks. OWASP. Retrieved from http://www.owasp.org
13. Riley R, Xuxian J, & Dongyan X. (2010). An architectural approach to preventing code injection attacks. IEEE Transactions on Dependable & Secure Computing, 7(4), 351-365. Retrieved from http://www.computer.org

Traditional Hackers

While WikiLeaks had been existence for some time, they gained notoriety when a United States (US) service member leaked classified Pentagon documents.  For this reason, I advocate that the term hacker is not relevant.  In fact, it seems the US Congress agrees and in 2010, they introduced a bill that intended to both prevent leaking of material as well as publishing this material (Goth, 2011).  In essence, leaking documents of any nature may be punishable under the law; however, it in no way rises to the level of hacking.  Either way attacks cripple or damage an organization.

Monitoring

All systems are at risk from attacks both from internal and external entities.  For this reason, it is imperative to employ intrusion detection to provide the needed security measures in protecting people, data, and other systems.  This type of detection can be costly and time consuming however, intrusion detection can leverage a number of technologies and algorithms.  One approach is machine learning in terms of classifying network use based upon dependent and independent set of variables (Das, Pathak, Sharma, Sreevathsan, Srikanth, & Kumar, 2010).  Another approach includes the combined use of software to build a customized intrusion detection system.  Open source as well as commercial products are used and the former has security concerns beyond commercial products but if the risk with open source is mitigated it can be beneficial on many levels.  Monitoring comes with risk to both systems and the end users therefore it is vital to plan and gain approvals (Silver, 2010).

Countermeasures

Since in the case of WikiLeaks deals more with publishing sensitive information rather than attacks it is no less important to implement firewalls, vulnerability assessment tools, intrusion detection systems, logging tools, password security, and the list goes on.  This single greatest threat is the individual and for this reason, sensitive data must be encrypted and restricted to key personnel.  One could take a play out of the playbook from Al Jazeera where they claim to use encryption at all levels of a news story (Goth, 2011).  Another valuable deterrent would be clear and enforceable laws and regulations that keep up with changing technology and the digital world.  An access control list is a valuable asset in terms of identifying those requiring access as well as ensuring that individuals who no longer require access are removed.  Remember, a high percentage of people have global access to information that just ten years ago was not available.

Post-incident Procedures

Most often learning comes from experience and post-incident security measures will provide valuable insight into vulnerabilities.  Consider developing a repository to house data from known attacks as well and industry information.  This data is analyzed in order to revisit existing policies to determine if an area has been overlooked.  The same data can also assist in training and education.  Because vulnerabilities exist in hardware, software, and configuration tackling the issue may be more wide spread than imagined (Lai & Hsia, 2007).  In the event that business partners are impacted, it is imperative to have a communications plan.  Assume that port 80, which serves HyperText Transfer Protocol (HTTP) traffic is allowed and it was used to circumvent exiting security measures.  In this scenario, products Nmap (Lai & Hsia, 2007) and similar products can be employed to scan systems, determine the needs for this port, and then plan, and coordinate isolating this port as well as other ports that present a risk.

References

1. Goth, G. (2011). Welcome to the Age of Antidiplomacy. IEEE Internet Computing, 15(2), 7-10. doi:10.1109/MIC.2011.48
2. Das, V., Pathak, V., Sharma, S., Sreevathsan, Srikanth, M., & Kumar T., G. (2010). Network intrusion detection system based on machine learning algorithms. International Journal of Computer Science & Information Technology, 2(6), 138-151. doi:10.5121/ijcsit.2010.2613
3. Silver, T. (2010). Monitoring network and service availability with open-source software. Information Technology & Libraries, 29(1), 8-22. Retrieved from http://www.ala.org/
4. Yeu-Pong Lai, & Po-Lun Hsia (2007). Using the vulnerability information of computer systems to improve the network security. Computer Communications, 30(9), 2032-2047. doi:10.1016/j.comcom.2007.03.007

Security: Security magazine reaches 35,000 security end-user and integrator subscribers in government, healthcare, education, airports, seaports, transportation, distribution, utilities, retail, industrial, financial, hospitality / entertainment, construction, industrial/manufacturing and other markets.

Security Source: From spyware to phishing attacks, security threats are growing more virulent as the promise of big payoffs increase. In its premier Winter 2007 issue, Security Source Magazine’s cover story is about keeping the network secure, from the gateway to the desktop.

Security on a Budget: How to Develop a Cost-Effective Security Program: Is it better to manage in-house or outsource some tasks to an MSSP? Do you have a complete view of all the “hidden” costs that are often not recognized until late in the process? This webinar provides an insider’s recommendation on how to get the most from your information security budget. Lance Wolrab shares his “lessons learned” about cost management as a CSO for a large healthcare organization and as a senior security engineer at Dell SecureWorks.

HackerProof: Your Guide to PC Security: The terms “PC security” or “computer security” are vague in the extreme. They tell you very little, like most general terms. This is because PC security is an incredibly diverse field. On the one hand you have professional and academic researchers who carefully try to find and fix security issues across a broad range of devices. On the other hand, there is also a community of inventive computer nerds who are technically amateurs (in the literal sense of the word – they’re unpaid and unsupported by any recognized institution or company) but are highly skilled and capable of providing useful input of their own.

Justifying IT Security: Managing Risk & Keeping Your Network Secure: This white paper discusses the management of Risk and how Vulnerability Management is one of the few counter-measures easily justified by its ability to optimize risk.

Securing & Optimizing Linux: The Hacking Solution (v.3.0): This 800+ page eBook is intended for a technical audience and system administrators who manage Linux servers, but it also includes material for home users and others. It discusses how to install and setup a Linux server with all the necessary security and optimization for a high performance Linux specific machine. It can also be applied with some minor changes to other Linux variants without difficulty.

7 Essential Steps to Achieve, Measure and Prove Optimal Security Risk Reduction: Rapid changes within technology and the evolving sophistication of attack methods used to infiltrate systems create the greatest set of challenges faced by IT administrators trying to keep their systems secure and within regulatory compliance. That’s why—whether protecting five servers or 5,000—measuring the security status of your infrastructure and your organization’s ability to rapidly mitigate emerging threats need to be continuously monitored and measured.

Lockdown: Secure Your Data With True Crypt: This manual will be talking about local file encryption – that is, encrypting files on a hard drive (or encrypting the entire hard drive; more on that later). The files are safe as long as they are kept in the encrypted area. TrueCrypt is a free, cross-platform program (meaning that it works in Windows, Mac OS X and Linux distributions including Ubuntu) that you can use to encrypt your data. It is classified as “On The Fly Encryption” (OTFE) software, which basically means that it encrypts and decrypts files as you access and modify them and that all files within the area of encryption are available as soon as you enter the key. Also with this free guide you will also receive daily updates on new cool websites and programs in your email for free courtesy of MakeUseOf.

The Top 10 Reports for Managing Vulnerabilities: New network vulnerabilities appear constantly and the ability for IT security professionals to handle new flaws, fix misconfigurations and protect against threats requires constant attention. However, with shrinking budgets and growing responsibilities, time and resources are at constrained. Therefore, sifting through pages of raw vulnerability information yields few results and makes it impossible to accurately measure your security posture.

The (VERY) Unofficial Guide To Facebook Privacy: As the service evolves, executives tend to favor our open access to information, meaning information you think is private will slowly become public, but that doesn’t mean you can be private if you want to. Facebook gives its users the option to lock things down, but users need to be aware of their controls, how to use them and how to prepare for future Facebook privacy changes. Facebook has not and will not make information obvious, and that’s where this guide comes in. With this free guide you will also receive daily updates on new cool websites and programs in your email for free courtesy of MakeUseOf.

Security Director News: Through its web site and weekly newswire, Security Director News delivers day-to-day facts and real business information that assist security directors in making the right decisions for the safety of their organizations. Security Director News presents a wide variety of viewpoints on important issues, including interviews with involved parties, analysts and experts from every industry segment.

Web Application Security; How to Minimize Prevalent Risk of Attacks: Stories about exploits that compromise sensitive data frequently mention culprits such as “cross-site scripting,” “SQL injection,” and “buffer overflow.” Vulnerabilities like these fall often outside the traditional expertise of network security managers.

Security Systems News: Security Systems News is a monthly business newspaper reaching over 28,000 security dealer/installers, systems integrators, product distributors, central stations, systems resellers as well as end users and security consultants. Editorial coverage focuses on breaking news in all major segments of the security industry such as market trends, new products, new technology introductions, and news about manufacturers and suppliers.

Open Source Security Tools: A Practical Guide to Security Applications: Written with the harried IT manager in mind, Open Source Security Tools is a practical, hands-on introduction to open source security tools. Seasoned security expert Tony Howlett has reviewed the overwhelming assortment of these free and low-cost solutions to provide you with the “best of breed” for all major areas of information security.

Securing Sensitive Data in File Shares: All companies invest in software and staff to ensure they are able to control access to critical information that’s stored in applications and databases because it’s part of standard business and IT operations. Despite those investments, companies don’t put the same amount of resources toward protecting unstructured stores like file shares. View the archive of this educational webinar to learn how your company can effectively manage access to data in file shares.

PC Security Handbook – 2nd Edition: This handbook is designed to help you find ways to protect your Windows XP/Vista/7 PC and ensure your data is safe. The author gets countless emails from site visitors who ask about the best anti-virus software, firewall program, backup utilities, etc., and there are often questions like this in the forums. He sets up PCs for companies, friends, and family; the advice he gives in this manual is what he uses when building any PC. His tips are tried and tested and have left hundreds of people satisfied with the way their computers work. He hopes you too can follow these instructions and enjoy an error-free, spyware-free, and speedy PC.

SY0-201 CompTIA Security+ Special Edition Practice Exam and Study Guide: CompTIA’s Security+ exam is a critical step for anyone interested in IT security. It’s a key component in the Department of Defense’s 8570.1 initiative that mandates federal IT workers and contractors gain security certifications to work with the federal government. The ExamForce SY0-201 CompTIA Security+ practice exam provides a unique triple testing mode to instantly set a baseline of your knowledge and focus your study where you need it most, while the 51 page Study Guide provides high quality reference material — a valuable companion to the practice exams.

Federal Computer Week: It provides information decision-makers need to run the business of their agencies and deliver on their missions through the deployment of information technology.

U.S. Secret Service Assistant Director A.T. Smith said,

Americans over the past several years have seen the significant impacts data breaches are having on our nation’s financial infrastructure. Today, cyber criminals are operating in nearly every civilized nation in the world, exposing Americans’ personal information, either stored or transmitted, to substantial risk.

The following graph demonstrates the effects of security breaches and where breaches originate.

It is not news that a high percentage of attack are derived from external sources but where you should take note is that 18% of attacks come from inside and business partners. Previously I wrote about Facing cyber security threats from employees, if you have not taken the time to read this post; I highly suggest you do so.

The external risks are often easily identified in most cases however threats from within are often much more complex to prevent.

Combating The Problem

Access controls are the front line of defense and they help to prevent the accidental or malicious disclosure, modification, or destruction of data. Access controls also play a role in malfunctioning programs, all software has some type of defect and defects open your software up to vulnerabilities or even leaking confidential data.

Because business partners are necessary they must not be allowed free access to networks and to help prevent prying eyes there must be policies in place. One such policy may be that when none employees are on the floor computer screens are to be turned off and desktops are to be cleared.

Finally the biggest bang for the buck is auditing. I know this seems obvious but I am amazed at the lack of auditing that I have seen over the years and particularity with software. I’m not saying audit everything but you should identify the greatest risk and start from there. For example, password resets and data transactions can provide tall tell signs if systems have been compromised.

Conclusion

Security is a daily process that is ever changing in large part to the growing threats. It is simply not enough to purchase hardware and software and expect that your organization is protected. In particular, if you provide services in the area of software either internal or external to the company, secure coding, and education of the development team is paramount to success.

References

1. Database Security : Tech Center – Dark Reading
2. Verizon 2011 Data Breach Investigations Report: Breaches Increased Dramatically While Data Loss Was at All-Time Low

Introduction to MBSA

Microsoft Baseline Security Analyzer is an easy-to-use tool designed for the IT professional that helps small- and medium-sized businesses determine their security state in accordance with Microsoft security recommendations and offers specific remediation guidance. Improve your security management process by using MBSA to detect common security misconfigurations and missing security updates on your computer systems. A number of options include:

1. Administrative vulnerabilities
2. Week Passwords
3. IIS administrative vulnerabilities
4. SQL administrative vulnerabilities
5. File shares
6. … and more

Best of all Microsoft Baseline Security Analyzer it absolutely free from Microsoft!

Executing MSBA

Once you have downloaded and installed Microsoft Baseline Security Analyzer go ahead and run the application.

If you’re scanning a single computer then go ahead and click “scan a computer”. Once the next dialog has loaded, you will need to uncheck IIS and SQL administrative vulnerabilities unless of course you are running these two services.

The next step is to start the scan. Go ahead and click the button “start scan. The scan can take a few minutes so be patient. Once the scan has completed you are then presented a dialog that tells you exactly what was scanned, the score, issue, and the result. Reporting includes:

1. Microsoft Office Updates
2. Critical Updates or Patches
3. Weak Password Check
4. Services
5. Firewall
6. File Sharing

The scan resulted in a number of critical failures. The failures must be correctly properly secure you system and while you in the process address each line item to further fortify your operating system. Take for example the critical failure of local account password test. The result states user accounts have simple or no password which can lead to others being able to quickly determine your password.

If you’re not positive how to correct the problem then Microsoft has you covered here as well. Go ahead and click “how to correct this” and the issue is explained as well a solution with instructions is provided. Now it just cannot be any simpler and now you have no reason to not properly secure your operating system.

Conclusion

Microsoft Baseline Security Analyzer does a great job of pointing out the holes in security and by following the best practices and guidelines provided you will quickly find yourself on a path of security prosperity. Just remember, security is a never ending process and with that being said you may want to re-run the scan on a monthly or even a quarterly basis.

Have you used Microsoft Baseline Security Analyzer previously? If so what are you thoughts? Does this product provide a valuable tool set that helps in your security endeavors?

References

• Download Microsoft Baseline Security Analyzer

Credits

Featured image: Casey Serin

SQL Injection Cheat Sheet

The SQL Injection Cheat Sheet provides a summary of everything you need to know about SQL Injection. The SQL Injection Cheat Sheet contains the key concepts of SQL Injection and a SQL Injection example and tips for prevention of SQL Injection attacks. Note that you must register with Veracode in order to obtain these cheat sheets.

Download the FREE SQL Injection Cheat Sheet

Cross-Site Scripting (XSS) Cheat Sheet

The Cross-Site Scripting Cheat Sheet provides a summary of what you need to know about Cross-site Scripting. Our XSS cheat sheet details the different types of Cross-site Scripting and shows you how to protect against Cross-site Scripting vulnerabilities.

Download the FREE XSS Cheat Sheet

LDAP Injection Cheat Sheet

The LDAP Injection Cheat Sheet provides a summary of what you need to know about LDAP Injection. It contains a LDAP Injection example and details of how to protect against LDAP Injection vulnerabilities.

Download a FREE LDAP Injection Cheat Sheet