Network Security guide for the home or small business network – Part 16 – Learn about the enemy



I remember I had a geography teacher once that was a former Marine and he said when he was growing up it was the height of the cold war and geography was interesting to him from a “know your enemy” point of view. That’s a good concept to apply to computer security and network security. This doesn’t mean you have to visit a bunch of blackhat sites (although I’ve known those that do) to monitor their activities.


What it does mean is learn the hows and whys of people breaking into computers. In my case, one of the books that was most instructive was Hacking Linux Exposed. It’s not a how-to hack manual mind you, but it does give some pretty clear analysis of the different ways that a system can be attacked either over the wire or through a social engineering attack. It also gives ideas of how effective, how common and how the attack can be mitigated (marginialized/prevented or protected against.)

There is a whole series of Hacking * exposed books. (Hacking Exposed Computer Forensics (Hacking Exposed), Hacking Exposed 5th Edition (Hacking Exposed), Windows Server 2003 (Hacking Exposed), Windows 2000 (Hacking Exposed)) I haven’t read the rest, but if it holds up to the Hacking Linux exposed book any of them should be instructive.

Another idea if you’re a budding security investigator is to setup a test environment on your own network (A network YOU control and OWN all equipment on) for the purposes of security auditing, using scanning tools and learning the tools of the “enemy”.

Do NOT use networks that are out of your control or permission to test on. Examples…. my home network I own and control all the machines on it, the cable, the switch, etc. I’m free to do whatever I desire with regards to network scanning, penetration testing, etc. In some cases I’ve set up a virtual network segment walled off from the outside world for purposes of seeing what a virus does. Another example… I commonly use a network scanner to identify services running on a network that I do computer service for. That’s with the authorization of those owning the network/machines.

Related Posts

Blog Traffic Exchange Related Posts
  • Symantec Antivirus Remotely Exploitable Vulnerability This is bad - whose defending the defender? eEye security has a bulletin announced that regards a remotely exploitable vulnerability in Symantec Antivirus 10.x and Symantec Client Security 3.x They say other versions MAY be vulnerable they're waiting for information from Symantec. Now, Symantec is probably the biggest selling antivirus......
  • Here's a bookmark for your NOC (Network Operations Center)... Talisker Computer Network Defense Operational Picture Sometime during the winter, I recall President Bush visited the NSA headquarters if I'm not mistaken and there was some press footage of him shaking hands in a very important looking techy monitoring room. A network operations center of some sort. I think they called it the Threat Operations Center.......
  • How to Remove PCSecure | PCSecure Removal Guide PCSecure is a recent rogue antivirus from the notorious and prolific wini family of rogue security software. It is typically promoted via trojan downloaders. Usually these will be on a website with a video that may be highly sought after. In order to see the video though you are told......
Blog Traffic Exchange Related Websites
  • Save Time, Money and Space in Over 80 Ways If you're looking for handy gadgets, tools and various items that can save you time, money or space (or all three!) this list of more than 80 top products is just what you need. Everyone's got saving money on their minds these days- whether your at the grocery store, or......
  • PlayStation Network Hacked! How to Protect Your Identity You might have heard by now, but there was a major hacking event over the past week. The PlayStation Network, where thousands of gamers congregate to play online, has been hacked.  Yes, the 'hackactivist' group (that is, a group that using hacking to avenge perceived wrongs) 'Anonymous' hacked into the......
  • iPhone Reveals Passwords in under 6 Minutes with this Attack German Researchers have been able to attack and hack the iPhone in under 6 minutes. The attack reveals passwords stored in a locked iPhone. The attackers have able to retrieve the data even without getting past the Passcode screen. The hack works on latest iOS 4.2.1. The attack requires possession......
PDF24    Send article as PDF   

Similar Posts


See what happened this day in history from either BBC Wikipedia
Search:
Keywords:
Amazon Logo

Leave a Reply

You must be logged in to post a comment.


Switch to our mobile site