Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Management
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

RE: Research Help

from [Brad Bemis] Network Security [Permanent Link]
Subject: RE: Research Help
Date: Sun, 8 Jan 2006 09:51:07 -0800 
There are a few options available to you, but considering the
technical level of detail you are looking to go into - try taking a
look at  http://www.cert.org/security-improvement/index.html.  You may
also want to look at the OCTAVE framework that they sponsor, but it
may be a bit more involved than what you need -
http://www.cert.org/octave/.

These should help get you started...  

-Brad Bemis, CISSP, CISA

-----Original Message-----
From: sukh.gill1@btinternet.com [mailto:sukh.gill1@btinternet.com] 
Sent: Sunday, January 08, 2006 4:31 AM
To: security-management@securityfocus.com
Subject: Research Help

Hi All,

I'm presently conducting research for my final year dissertation; the
project entails creating a software application to help SME's assess
their network security posture. Using a questionnaire based database
the application will highlight areas of concern and provide a gap
analysis report. Areas that I will touch on include:

Perimeter Firewalls, Router ACL's, TCP wrappers, DMZ objects (SMTP and
Web servers), Virus and Proxy Servers, NOS, WLAN,IDS and DNS servers. 

I need the groups help on the following point:

What official network security standards can I use for my gap analysis
report?


Cheers,

S Gill
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Research Help, Fred Cohen
Next by Date:  Corporate Security Councils and Working Groups, Brad Bemis
Previous by Thread:  Re: Research Help, Fred Cohen
Next by Thread:  Corporate Security Councils and Working Groups, Brad Bemis
Indexes:  [Date] [Thread] [Top] [All Lists]