Security Administration Tools - PowerPoint PPT Presentation

About This Presentation
Title:

Security Administration Tools

Description:

Network Traffic and Packet analyzers Wireshark, TCP Dump, Cain and Able (PW), Ntop, Netcat Vulnerability Testing Metasploit, Nessus Intrusion Detection Systems ... – PowerPoint PPT presentation

Number of Views:161
Avg rating:3.0/5.0
Slides: 18
Provided by: Google
Learn more at: http://cups.cs.cmu.edu
Category:

less

Transcript and Presenter's Notes

Title: Security Administration Tools


1
Security Administration Tools
  • Hanan Hibshi Tim Vidas

2
Putting it All Together
  • Web browser and Web security 
  • PKI and Secure Communication
  • Phishing Semantic Attacks
  • User Education 
  • Passwords, graphical passwords and alternatives
  • Challenge Questions
  • Access Control 
  • Other issues...

3
Why Security Administration?
  • Hackers.
  • Attacks.
  • Vulnerabilities.
  • Terrorism.
  • etc.
  • Thus, we need front liners!

4
Who?
  • Security Admin Personnel 
  • Can be one person
  • Can be a team
  • Scalability size of organization, cost. 

5
Why cant one person do it?
  • Too many things to keep track of. 
  • Monitoring and maintenance of a number of
    complicated tasks. 
  • Need to "keep an eye"
  • Security tools supposed to be "to the rescue"
  • Make administrators life easier
  • Provide them with better reporting and monitoring
  • Paper in assigned readings defined a number of
    factors
  • Organizational
  • Human
  • Tools themselves

6
Common Tools
  • Network Traffic and Packet analyzers
  • Wireshark, TCP Dump, Cain and Able (PW), Ntop,
    Netcat
  • Vulnerability Testing
  • Metasploit, Nessus
  • Intrusion Detection Systems (IDS)
  • Snort, Splunk
  • File/host integrity tools
  • Tripwire
  • Others
  • OpenSSH honeypots, Scripting tools, Websecurity

7
Wireshark - ScreenShot
8
Wireshark Screenshot 2
9
TCPdump Screenshot
10
Cain and Abel
11
Ntop Screenshot
12
Ntop Screenshot 2
13
Metasploit - Screenshot
14
Nessus - Interface
15
Snort - Screenshot
16
Problems
  • GUI vs. Command line
  • Technical background
  • Is usability important anyway?
  • Issues
  • Too much to look at
  • No single data format for output
  • Out-of-sync clocks
  • The human!

17
Some Proposed Solutions
  • Visualizations
  • Training users
  • Understand implications
  • Understand least privilege
  • Understanding different players organization,
    human, tools
  • Improving IDS Usability
  • Assist users with configuration and installation
  • Some other recommendations
  • Heuristics evaluation
  • Developed ITSM Heuristics
  • Compared ITSM to Nielsens Heuristics
  • With ITSM Heuristics, more problems were found
Write a Comment
User Comments (0)
About PowerShow.com
Home About Us Terms and Conditions Privacy Policy Presentation Removal Request Contact Us
Copyright 2024 CrystalGraphics, Inc. — All rights Reserved. PowerShow.com is a trademark of CrystalGraphics, Inc.
The PowerPoint PPT presentation: "Security Administration Tools" is the property of its rightful owner.
Do you have PowerPoint slides to share? If so, share your PPT presentation slides online with PowerShow.com. It's FREE!