Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Pen-Test
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: network policy checking

from [kevin horvath] Network Security [Permanent Link]
Subject: Re: network policy checking
Date: Fri, 28 Mar 2008 09:16:27 -0400 
For cisco router and pix config reviews look at the CIS RAT (Router
Audit Tool).  Its pretty good considering its freeware.

On Thu, Mar 27, 2008 at 11:45 PM, Sony C <raagamuffin@yahoo.com> wrote:

Todd,

 My primary area of interest is to see if the network I am assessing meets 
certain best practices, for eg: all the CISCO routers have a certain QOS, or 
IPSec/GRE tunnels are supported, etc.
 Hope this clarifies things a bit?

 Regards,
 SC.


 ----- Original Message ----
 From: Todd Haverkos <fsbo@haverkos.com>
 To: Sony C <raagamuffin@yahoo.com>
 Cc: pen-test@securityfocus.com
 Sent: Thursday, March 27, 2008 10:29:57 PM
 Subject: Re: network policy checking


 Sony C <raagamuffin@yahoo.com> writes:

 > Hello fellow pen-testers,
 >
 > I am looking for tools that perform network policy checking. Specifically, 
tools that allow the user to define a policy and then test the network 
elements to see if they adhere to this policy. As one might guess, this can 
be accomplished either via config file checking (passive) or actual network 
testing (active, via SNMP etc).
 > I am interested in both flavors, if they are available. These tools can be 
commercial or open-source/free/shareware.
 > While it is a broad requirement, this hypothetical tool will primarily be 
looking at routers, firewalls, etc.
 >
 > Thank you in advance for sharing your thoughts.

 Hi Sony,

 Could you give some examples of specific routers and firewalls you're
 looking to check, and what an example "network policy" issues you're
 interested in?  It might help focus down some of the recommendations.







      
____________________________________________________________________________________


Be a better friend, newshound, and
 know-it-all with Yahoo! Mobile.  Try it now.  
http://mobile.yahoo.com/;_ylt=Ahu06i62sR8HDtDypao8Wcj9tAcJ

 ------------------------------------------------------------------------
 This list is sponsored by: Cenzic

 Need to secure your web apps NOW?
 Cenzic finds more, "real" vulnerabilities fast.
 Click to try it, buy it or download a solution FREE today!

 http://www.cenzic.com/downloads
 ------------------------------------------------------------------------




------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------
[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Lan Attacks, Jamie Riden
Next by Date:  Re: network policy checking, matt . foster
Previous by Thread:  RE: network policy checking, Erin Carroll
Next by Thread:  Re: network policy checking, R. DuFresne
Indexes:  [Date] [Thread] [Top] [All Lists]