Security Basics mailing list archives
Re: SIM Solutions testing environement. Eg. Netforensics
From: Nikhil Wagholikar <visitnikhil () gmail com>
Date: Wed, 14 Oct 2009 09:09:45 +0530
Hi Mohamed Aymen Sahli, Here are the ideas you may like to give a try: 1. Enable logging on one to two test/sample systems such as Active Directory, Email server, Database server etc and see whether your NetForensics SIM is working fine and according to your expectations and needs. 2. For testing attacks, you can prefer to run tools like NMap and Nessus (with denial of service plug-in ON) on these test systems and check whether your SIM can detect and report these attacks as configured. 3. May be on a broader scale, you can think of conducting a small scale penetration testing exercise too and check the effectiveness of SIM. 4. Else, you can prefer to conduct a third party (operational) audit of your SIM installation. Hope this helps!! --- Nikhil Wagholikar Practice Lead | Security Assessments & Digital Forensics Network Intelligence India Pvt. Ltd. [NII Consulting] Web: http://www.niiconsulting.com/ Comprehensive Information Security Training http://iisecurity.in/courses/Training%20Calendar.html 2009/10/10 Mohamed Aymen SAHLI <sahli.aymen () gmail com>
Hi all, In the context of acquisition of a SIM solution, netforensics, i will have to put in place a testing realistic environment where i will be simulating the life cycle of the SIM integration, configuration and day to day inherited tasks. i will be simulating attacks along with daily network and system activity in order to generate feeds to the SIM. My question is , where to start to put in place such a environment ? is there examples ? PS: i will be using virtualisation for sure as i don't really have the hardware for a physical testing network. All suggestions would be greatly appreciated. Best regards. ------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
------------------------------------------------------------------------ Securing Apache Web Server with thawte Digital Certificate In this guide we examine the importance of Apache-SSL and who needs an SSL certificate. We look at how SSL works, how it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates. http://www.dinclinx.com/Redirect.aspx?36;4175;25;1371;0;5;946;e13b6be442f727d1 ------------------------------------------------------------------------
Current thread:
- SIM Solutions testing environement. Eg. Netforensics Mohamed Aymen SAHLI (Oct 13)
- Re: SIM Solutions testing environement. Eg. Netforensics Nikhil Wagholikar (Oct 14)
- Re: SIM Solutions testing environement. Eg. Netforensics aditya mukadam (Oct 15)
- Re: SIM Solutions testing environement. Eg. Netforensics Gleb Paharenko (Oct 15)