Skip to main content

Network and Systems Hardening

Network hardening Make sure your firewall is correctly configured, that all rules are periodically reviewed, that remote access points and users are secure, that any open network ports are blocked, that extraneous protocols and services are disabled and removed, that access lists are in place, and that network data is encrypted. Systems Hardening Audit your current systems: Conduct a thorough audit of your current technologies (you can use). To identify system weaknesses and order remedies, use security auditing techniques like configuration management, vulnerability scanning, and penetration testing. Utilize industry standards from NIST, Microsoft, CIS, DISA, and other sources to conduct system hardening assessments against resources. Create a strategy for systems hardening: Not every system needs to be hardened at once. Instead, develop a strategy and plan based on the risks found in your IT ecosystem, and then utilize a staged approach to fix the most serious issues. Patch ...

Concepts, Types, and Phases of Hacking

 Concepts, Types, and Phases of Hacking

A hacker is someone who is intelligent enough to use various tools and techniques to gain unauthorized access to a system in order to steal information such as usernames, passwords, financial information, credit card information, business data, and personal information. Hackers are very skilled, capable of creating software, and exploring both hardware and software. Their motives can range from paying people to hack computers to engaging in unlawful activity for enjoyment.

Black Hats

Hacker with amazing talents who engages in malicious and destructive acts, often known as crackers

White hats

Security Analyst or individuals with hacking skills using them for defensive purpose 

Gray Hats

Gray Hats are those work for both offensively and defensively

Suicide hackers

Suicide hackers are those who aim for destruction without worrying about punishment.

Script Kiddies

Unskilled hackers, hacking and compromising systems using tools are scripts made by real hackers.

Cyber Terrorists

Skilled individuals, motivated by religious or political belief attacking on large scale to create fear

Hacking

The Term "Hacking" in information security refers to exploiting the vulnerabilities in a system, compromising the security to gain unauthorized command and control over the system resources.

Hacking Phases

The following are the five phases of hacking: -

1. Reconnaissance

2. Scanning

3. Gaining Access

4. Maintaining Access

5. Clearing Tracks

Comments

Popular posts from this blog

Network management/monitoring tools

1 . SolarWinds Network Performance Monito r- This network monitor is based on SNMP,it includes a deep packet inspection function. It works on Windows Server.  2. ManageEngine Network Topology Tool with OpManage A network monitoring system that uses Ping sweeps and SNMP processes to watch performance. Available for Windows Server and Linux. 3. Paessler PRTG This monitoring package is a bundle of monitors, which are called sensors. One sensor, called a packet sniffer, notes packet header contents but does not capture them. It installs on Windows OS. 4. Splunk App for Stream An add-on for a well-known network data processor. Splunk Stream can perform a full packet capture or generate metadata by reading passing packet headers. It runs on Windows, Linux, macOS, FreeBSD, Solaris 11, and AIX. 5. Omnipeek A neat network monitor with some great data visualizations that sources data with a network analyzer. It works on Windows. 6. NetSpot An impressive wireless network analyzer with a s...