Security Basics mailing list archives

RE: Malware and DoS analysis

From: "David Gillett" <gillettdavid () fhda edu>
Date: Wed, 19 Jul 2006 11:17:14 -0700

  Most of the viruses we've seen on our network in the last
couple of years walked in the door on laptops.  There are a
couple of measures which help mitigate this, including having 
a separate filtered subnet and/or deploying some kind of NAC
solution.

David Gillett

-----Original Message-----
From: bitshield () gmail com [mailto:bitshield () gmail com] 
Sent: Tuesday, July 18, 2006 11:05 PM
To: security-basics () securityfocus com
Subject: Malware and DoS analysis

Hello

I'm trying to analyse a company's vulnerability to malware 
(Viruses, Trojans, Backdoors, etc)  and DoS. I'm however a 
little bit stuck in finding an approach to do that. I'm 
trying to collect properties that make a corporate 
environment vulnerable to certain kinds of malware and DoS attacks.

Some of the points I want to have a closer look are:
-  Internet Access architecture
- Intranet and DMZ architecture
- General Network defences
- Anti-Virus deployment
- Deployed Operating Systems and their patch level
- Employees' awareness regarding malware
- Proper defence-in-depth concept

Do you guys have any other ideas? What can be considered to 
analyze DoS susceptibility?

Thanks for your feedbacks
Joe

--------------------------------------------------------------
-------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE 
The NSA has designated Norwich University a center of 
Academic Excellence in Information Security. Our program 
offers unparalleled Infosec management education and the case 
study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this 
esteemed degree, without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
--------------------------------------------------------------
-------------



---------------------------------------------------------------------------
This list is sponsored by: Norwich University

EARN A MASTER OF SCIENCE IN INFORMATION ASSURANCE - ONLINE
The NSA has designated Norwich University a center of Academic Excellence 
in Information Security. Our program offers unparalleled Infosec management 
education and the case study affords you unmatched consulting experience. 
Using interactive e-Learning technology, you can earn this esteemed degree, 
without disrupting your career or home life.

http://www.msia.norwich.edu/secfocus
---------------------------------------------------------------------------

Current thread:

Malware and DoS analysis bitshield (Jul 19)
- RE: Malware and DoS analysis David Gillett (Jul 21)
- Re: Malware and DoS analysis gmx (Jul 21)
- Message not available
  - Re: RE: Malware and DoS analysis Joe (Jul 24)
- <Possible follow-ups>
- Re: Malware and DoS analysis SecurityFocus (Jul 21)
- Re: Malware and DoS analysis jacco (Jul 21)