Network Security Library

Network Security Library / Network Security

Recognizing IPv6 Address Types on Windows Systems in Support of DirectAccess – Part 2: A Detailed Look at IPv6 Transition Technologies: Date - Apr 14, 2010; Author - Deb Shinder; Taking a look at IPv6 Transition Technologies.
Recognizing IPv6 Address Types on Windows Systems in Support of DirectAccess – Part 1: Overview of IPv6 and DirectAccess: Date - Feb 24, 2010; Author - Deb Shinder; Taking a look at the main points of DirectAccess, IPv6, and why the former is dependent on the latter.
VirtSec: Protecting Virtual Infrastructures: Date - Apr 23, 2008; Author - Brett Callow; This white paper will examine the challenges associated with securing a virtualized infrastructure.
AVG: Protecting you from Web-borne threats: Date - Apr 09, 2008; Author - Brett Callow; This paper explains how AVG Technologies products reduce the risk of web-borne threats by providing real-time protection against existing and emerging threats.
Extending Enterprise Security Beyond the Perimeter: Date - Apr 02, 2008; Author - Brett Callow; This white paper will examine the risks associated with deperimeterization and explain which solutions can be used to mitigate such risks without impacting user productivity.
Blissfully Aiding and Abetting Hacker: Date - Aug 22, 2007; Author - Scott Wright; A case study of a recent hack against university computers, describing the need to harden computers and other prevention techniques.
Preparing for Security Event Management: Date - Feb 28, 2007; Author - Nick Hutton; How to mitigate some of the risks and reduce the costs associated with implementation of Security Event Management systems.
Targeted Cyber Attacks: Date - Feb 14, 2007; Author - GFI Software; The dangers faced by your corporate network.
Best Practices for Security Incident Response: Date - Nov 01, 2006; Author - Kerry Thompson; Are you prepared to make the best decisions and responses to security incidents in your business?
The Threat Posed by Portable Storage Devices: Date - Oct 18, 2006; Author - GFI Software; This white paper examines the nature of the threat that portable storage devices present and the counter-measures that organizations can adopt to eliminate them.
Pod Slurping - An easy technique for stealing data: Date - Oct 04, 2006; Author - GFI Software; This white paper explores how the uncontrolled use of portable storage devices such as iPods and USB sticks coupled with data theft techniques such as 'pod slurping', can lead to major security breaches.
DNS Amplification Attacks: Date - Sep 27, 2006; Author - Randal Vaughn & Gadi Evron; This paper outlines a Distributed Denial of Service (DDoS) attack which abuses open recursive Domain Name System (DNS) name servers using spoofed UDP packets.
Getting a CISSP: Date - Sep 20, 2006; Author - Kerry Thompson; This is a good article containing tips on getting a Certified Information Systems Security Professional (CISSP)certification.
Would You Hire a Hacker?: Date - Aug 23, 2006; Author - Kerry Thompson; I'm sure that most security professionals have had this question cross their mind, but is hiring a hacker something that makes sense?
Identity Lifecycle Process and You (Part 2): Date - Aug 16, 2006; Author - Al Mulnick; What makes up your Identity, and how is that used to provide access within the network? Read Part 2 of this article to learn more.
Cisco IOS from an Attacker's Point of View: Date - Aug 09, 2006; Author - hakin9; There are many ways an attacker can take control over Cisco network devices, often due to an administrator's lack of knowledge, or negligence. A security vulnerability exploitation that leads to an unauthorized access, or a Denial of Service attack, are just a matter of time.
Identity Lifecycle Process and You (Part 1): Date - Jul 19, 2006; Author - Al Mulnick; What makes up your Identity, and how is that used to provide access within the network?
How Will Your Network Be Compromised?: Date - Jun 21, 2006; Author - Darren Miller; What is the most common way your network will be compromised? It most probably will not be through any complex hacking technique but through overlooking the "small things".
Securing Windows 2000 Server - updated: Date - Jun 14, 2006; Author - Microsoft; The updated Securing Windows 2000 Server solution includes information about risk assessment and analysis, securing specific critical Windows 2000 Server roles, and operating a secure environment after the initial lockdown phases have completed.
Strengthen Data Protection with Network Access Controls: Date - May 17, 2006; Author - Tom Olzak; One of the first steps in meeting the challenges associated with the evolving demands for new network access methods, is the segmentation of the network. Once your network is segmented, the next step is to ensure that all endpoint devices (workstations, laptops, handheld devices, etc.) conform to your security baselines. Using a generic view of network access controls, we step through three common network connectivity scenarios in this paper.
Malware - future trends: Date - Jan 31, 2006; Author - Dancho Danchev; Malware has truly evolved during the last couple of years. Its potential for financial and network based abuse was quickly realized, and thus, tactics changed, consolidation between different parties occurred, and the malware scene became overly monetized, with its services available on demand.
Windows Server 2003 Security Guide v2.0: Date - Jan 25, 2006; Author - Microsoft; The updated Windows Server 2003 Security Guide provides specific recommendations about how to harden computers that run Microsoft Windows Server 2003 with Service Pack 1 (SP1) in three distinct enterprise environments. 1. Where older operating systems such as Windows NT 4.0 and Windows 98 must be supported. 2. Where Windows 2000 is the earliest version of the Windows operating system in use. 3. Where concern about security is so great that significant loss of client functionality and manageability is considered an acceptable tradeoff to achieve maximum security.
Virtualization: Date - Jan 04, 2006; Author - Bradley Morgan; This is a research paper about virtualization, a technology which has many impacts--one of which is related to security.
Social Engineering - The Weakest Link in Information Security: Date - Sep 07, 2005; Author - Jeff McDermott; Many of us in the computer industry understand the term 'Social Engineering' fairly well. But does your company, its managers and employees understand and practice good techniques in avoiding being the victim of Social Engineering? After all social engineering is the weakest point in your network's security! Don't believe it? Read on...
Social Engineering: You Have Been A Victim: Date - Jul 13, 2005; Author - Darren Miller; Social Engineering is a method often employed in the attempt to break through network security. It is based on the premise that it is often easier to ask for something than to work for it. Although "social engineering" is not a brand new style of gaining network access. This article will make you think about how easy a person can fall for social engineering.
Denial of Service Attacks: "Smurfing": Date - Jun 28, 2005; Author - Craig A. Huegen; This article provides good information on what a Denial of Service (DoS) attack is and why they can be so harmful to networks and sites on the Internet. The information here provides in-depth information regarding "smurf" and "fraggle" attacks with a focus on Cisco routers and how to reduce the effects of the attack. Some information is general and not related to an organization or particular vendor of choice, however the article does include information regarding other vendor products. Although DoS is not a new threat, the information contained here is comprehensive and timeless.
Instant Messenger Security: Securing Against the Threat of Instant Messengers: Date - Jun 16, 2005; Author - Gunter Ollmann; It is expected that as many as 300 million people use Instant Messaging (IM) products. Organizations are facing two problems with IM services; adoption has been driven by the end user and not by management, and the client applications were initially built for home users not businesses – consequently they emphasise functionality over security. Thus, almost through the back door IM has entered into the corporate world creating yet another layer of security concern. Unsecured IM client installations are placing enterprise systems at risk to hackers, viruses, worms, Trojans, legal liability and violation of privacy laws.
Spyware Clogging Network Arteries: Date - Apr 20, 2005; Author - Jeff McDermott; The goal of this article is to discuss the concerns and threats that spyware creates for Network Administrators, and to provide information that is helpful in making the general public aware of the spyware threat. Also included in the article is a link to independent studies and comparisons of Anti-spyware software by Eric L. Howes.
Definitive Guide to Security Management – Chapter 4 – Security Risk Management: Date - Apr 13, 2005; Author - Realtimepublishers.com, Inc.; Information security professionals are rarely at a loss for data. Point products—such as firewalls, intrusion prevention systems, antivirus programs, operating systems (OSs) and other elements of the security infrastructure—generate steady streams of data about events and conditions. Security professionals are not in need of data—they need information. Filtering volumes of raw data, correlating events, and reporting actionable information is the role of a security information management (SIM) system.
Server and Domain Isolation Using IPsec and Group Policy (Overview): Date - Apr 05, 2005; Author - Microsoft; This article demonstrates how IPsec transport mode can be leveraged as one of the best means currently available to protect corporate networks. This protection can minimize losses due to information theft, compromise of credentials, and administrative costs. This solution also clearly contrasts IPsec transport mode from the more widely known IPsec tunnel mode, one of the prevalent VPN technologies today.
Service Management Functions: Security Management (Part 2): Date - Mar 15, 2005; Author - Microsoft; The business world is increasingly reliant on technology to supply information and communications facilities to staff, partners, and customers. Securing organizational information and the systems that are used to manage and transmit data has become a high profile function. Failure to secure information can have a severe impact on business credibility.
Service Management Functions: Security Management (Part 1): Date - Mar 09, 2005; Author - Microsoft; The business world is increasingly reliant on technology to supply information and communications facilities to staff, partners, and customers. Securing organizational information and the systems that are used to manage and transmit data has become a high profile function. Failure to secure information can have a severe impact on business credibility.
The Information Workers' Security Handbook: Date - Dec 10, 2004; Author - Microsoft; Today’s information workers depend on computers and networks to perform many of their job duties. In the past, IT departments have focused on helping you become more productive and providing easier access to the data and network resources you need. As business networks have become more complex and interconnected, a new priority has emerged: securing the computer systems you use and the information that is stored on them and on the network.

Network Security Library topic

[	26	]	Anti Spam	[	12	]	Anti Virus	[	44	]	Auditing
[	60	]	Auth. & Access Control	[	3	]	Content Management	[	103	]	Cryptography
[	12	]	Disaster Recovery	[	36	]	Firewalls & VPN's	[	6	]	Forensics
[	41	]	Harmless hacking book	[	1	]	Honeypots	[	14	]	Information Warfare
[	26	]	Intrusion Detection	[	7	]	Law	[	3	]	Managed Security Solutions
[	50	]	Misc	[	24	]	Mobile Code	[	32	]	NCSC&DoD Rainbow series
[	13	]	NetWare	[	33	]	Network Security	[	4	]	Patch Management
[	3	]	Phishing	[	38	]	Policy & Standards	[	25	]	Privacy
[	21	]	Software Engineering	[	2	]	Trojans	[	2	]	Underground
[	82	]	Unix Security	[	19	]	Web Security	[	39	]	Windows Security
[	6	]	Wireless Security