Security Basics mailing list archives

RE: Security Toolkit for dummies

From: Jay Vlavianos <jvlavianos () ecastnetwork com>
Date: Mon, 9 Nov 2009 10:40:46 -0800

In addition to the other tools mentioned, I send my tech's out with a bootable USB-Key with Kapersky Rescue for 
anti-virus scanning.  It is slow but takes updates from the server in ram-disk.  The more advanced tech's also get a 
copy of the Ultimate Boot CD on CD/USB key as well.


-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On Behalf Of Jacob
Sent: Thursday, November 05, 2009 10:49 AM
To: 'exzactly'; security-basics () securityfocus com
Subject: RE: Security Toolkit for dummies

Other Ideas...

FileMon
RegMon
Malwarebytes
RootKit Revealer
HijackThis

-----Original Message-----
From: listbounce () securityfocus com [mailto:listbounce () securityfocus com] On
Behalf Of exzactly
Sent: Wednesday, November 04, 2009 10:27 AM
To: security-basics () securityfocus com
Subject: Security Toolkit for dummies

I am currently working on a (free)toolkit to pass down to Tier 3 and Tier 2 
to be used in the event of a breach/infection or suspected breach/infection.

In a nutshell I want to give them some tools to use to gain further 
information about the system and processes and/or malicious tools running on

it. This toolkit is designed for a Windows desktop and Server environment. I

am looking at building out tools that are fairly easy to use and do not 
require much training. Currently I have the following tools on it:

 (SysInternal tools)
Autoruns
PortMon
Process Explorer
Process Monitor
Ps Tools
Logon Sessions

Other tools:
Adaware


Is there anything else folks out there are using to provide their lower 
level support guys with some tools for informational gathering 
purposes....the tools have to run offline as systems are removed in the 
event of a breach or infection...I am not looking for a full blown forensics

kit, just something I can train folks unfamiliar with tool fairly quickly...



------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL
certificate.  We look at how SSL works, how it benefits your company and how
your customers can tell if a site is secure. You will find out how to test,
purchase, install and use a thawte Digital Certificate on your Apache web
server. Throughout, best practices for set-up are highlighted to help you
ensure efficient ongoing management of your encryption keys and digital
certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727
d1
------------------------------------------------------------------------


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------


------------------------------------------------------------------------
Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.

http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1
------------------------------------------------------------------------

Current thread:

Security Toolkit for dummies exzactly (Nov 04)
- Re: Security Toolkit for dummies noobposer (Nov 09)
- Re: Security Toolkit for dummies noobposer (Nov 09)
- RE: Security Toolkit for dummies Murda Mcloud (Nov 09)
- RE: Security Toolkit for dummies Jacob (Nov 09)
- Re: Security Toolkit for dummies Phunkodelic (Nov 09)
- RE: Security Toolkit for dummies Jacob (Nov 09)
  - RE: Security Toolkit for dummies Jay Vlavianos (Nov 09)
    - RE: Security Toolkit for dummies Anshuman Anil Deshmukh (Nov 10)
    - Re: Security Toolkit for dummies xgermx (Nov 10)
    - Re: Security Toolkit for dummies n3td3v (Nov 13)
    - Re: Security Toolkit for dummies Jay Vlavianos (Nov 13)
    - Re: Security Toolkit for dummies n3td3v (Nov 13)
    - Re: Security Toolkit for dummies exzactly (Nov 12)
- <Possible follow-ups>
- Re: Security Toolkit for dummies cybercops911 (Nov 09)