There
are two levels of vulnerability assessments
we offer.
Level 1:
(Most Popular) Asses the broad vulnerabilities
of your network with a brute force attack
searching for un-encrypted
access to files, shares, personal information,
administrative access to machines
though weak usernames and passwords.
(Usually takes a half day)
Deliverables:
A list of all machines and vulnerabilities
along with all usernames, passwords,
and shares uncovered
in the attack. We provide recommendations
to repair any vulnerabilities.
Level 2: We
use the brute force attack with customized
usernames and passwords tailored to
your organization.
We add a dictionary attack against key
machines to uncover any sensitive data
elements.
Deliverables:
A list of all machines and vulnerabilities
along with all usernames, passwords,
and shares uncovered
in the attack. We provide recommendations
to repair the vulnerabilities.
Different
type of vulnerabilities/attacks that
can be performed against your network.
1)
Denial of Service
A Denial of
Service (DoS) attack is an attempt by
an attacker to prevent legitimate users
from accessing a service.
a.
SYN Flooding
i. An attack that sends TCP connection
requests faster than a machine can process
them, creating a DoS (Denial of Service)
attack by locking up the resources
on the victim machine.
b.
ICMP Flooding
i.
Sending very large PING packets to a
vulnerable target machine, usually causing
the victim machine to reboot.
2) Password Cracking
a.
Dictionary Attack
i.
Using a list of well-known usernames
and passwords and running the list against
the login system or a stolen password
file to crack usernames and passwords
on a system.
b.
Brute Force Attack
i.
Similar to a Dictionary Attack, but
instead tries all possible characters
and combinations
of them. This kind of attack guesses
almost all passwords, even
though it’s a very lengthy process
to do so.
3) Man in the
Middle Attacks
a.
This is when an attacker intervenes
in a session created between a user
and any
other party (another PC, server, etc.)
that user is connected to in order to
read, insert, or modify the communications
between the two parties. This is
also done without either party noticing
anything abnormal going on.
4) Spoofing
a.
When an attacker appears as another
source while performing any attacks
or fraud
on a victim. Ex. IP Spoofing = Using
someone else’s IP to mask yourself
as
the other person.
5) Session Hijacking
a.
This is when an attacker takes
over a TCP session (Network communication)
between
two computers.
6) Teardrop Attack
a.
An exploitation of specific operating
systems that exploits using overlapping
fragmented
packets to freeze and/or reboot a machine.
7) Protocol Exploitation
a.
When an attacker exploits a weakness
in an operating system, software piece,
or
communication protocol to their advantage
to take over a PC, server, router,
entire network, etc.
8) Social Engineering
a.
When an attacker uses weak-minded employees
to gain access to passwords, usernames,
locations of servers, etc. through social
interaction, phone calls, or e-mails.
9) Disgruntled
Employees
a.
Employees of your place of business
that decide to wreak havoc on your network,
PC, etc for their own reasons.
10) DHCP Poisoning
a.
Setting up a DHCP server on a network
that shouldn’t be on that specific
network
(AKA Rogue DHCP Server) in order for
the attacker to distribute IP’s
of their
choosing to trap traffic, perform redirection,
etc. |
