Professional Security Services

mile2 offers comprehensive penetration testing to secure your information assets from attackers both inside and outside your Infrastructure. A critical complement to vulnerability scanning, penetration testing proves the extent to which vulnerabilities can be exploited by emulating what a hacker may do in a controlled and methodical manner. Our reports are manually written for a complete risk perspective.

mile2 offers: 

• Black Box Testing (Zero Knowledge)
• White Box Testing (Complete Knowledge)
• Gray Box Testing (Combination of Both of the above)

Why would you need a penetration test?
A study, released by the Ponemon Institute in October 2006,vii found that information losses cost U. S. companies an average of $182 per compromised record, an increase of about 31% from 2005 ($138 per record). http://www.ponemon.org/about.html

Penetration Testing Information

PHASE 1 –NETWORK SECURITY ASSESSMENT
This phase ensures the network devices protecting the Web servers are configured correctly, including border facing routers, switches and firewalls. This will involve the following:

Network Discovery - Using a combination of public and proprietary network mapping tools, network sweepers and port scanning tools, mile2 will gather accessible information about the physical network structure and identify available network services.

 Network Configuration – The configuration of firewalls, routers and switches will be examined for any anomalies against your company’s procedures and standards. The configuration will be compared to that of National Security Agency standards (NSA) and any gaps will be documented. SNMP strings and encrypted passwords will be examined as well as ACL’s and open ports.  

Vulnerability Identification – After confirming the system’s indentification, mile2 will conduct vulnerability assessment activities with open source tools and our proprietary vulnerability database in order to identify potential vulnerabilities in all network devices.
 
Exploitation Testing – After gaining express approval for the nature and time of testing, mile2 will  attempt to confirm vulnerabilities using exploit code developed and tested for the task. This  includes documentation and video footage to demonstrate the effectiveness of the attack.

PHASE 2 –SECURITY ASSESSMENT OF SERVER OPERATING SYSTEMS AND WEB SERVERS
In order to assess the security of the server operating systems and web server software, the following phases of the Security Assessment methodology will be undertaken using your Policy and NSA Standards.

Operating Security Controls – mile2 conducts a full review of your company’s servers platform  housing the web server.  This includes but is not limited to: patch levels, registry lockdown, user accounts,  service accounts, file permissions, enumeration settings and SNMP configuration. Open source   and commercial tools will be utilized.

Web Server Security Controls – A full review of your IIS/Apache configuration including but not  limited to lockdown, removal of default configuration, modules selected, log file security,  patching, consoles and retention. Open source and commercial tools will be utilized.

Vulnerability Identification – After confirming the system’s indentification, mile2 will conduct  vulnerability assessment activities with open source tools and our proprietary vulnerability database  in order to identify potential vulnerabilities in all services.

Exploitation Testing – After gaining express approval for the nature and time of testing, mile2 will  attempt to confirm vulnerabilities using exploit code developed and tested for the task. This  includes documentation and video footage to demonstrate the effectiveness of the attack.

PHASE 3 –SECURITY ASSESSMENT OF WEB APPLICATIONS
The final phase is where the majority of hacking attacks take place. Analysis of cookies, code inspection, encryption types, randomness and input validation will be carefully analyzed. These attacks are not stopped by firewalls and are now 70% of all hacker successful attacks.

Code Inspection – All web server code, including PHP, JAVA, C# (.NET) and HTTP will be inspected  for potential buffer overflows.

Penetration Testing Information Continued

Administrative Interfaces -To determine the extent of any administrative
interfaces used and whether or not they are secure.
Authentication and Access Control - To determine the adequacy of the
authentication and access control configurations.
Configuration Management - To determine the adequacy of change management procedures.
Input Validation - To determine whether the web application can be manipulated by inserting invalid input in order to extract sensitive information or perform unauthorized functions.
Parameter Manipulation - Determine whether parameters in the web applications can be manipulated to extract sensitive information or perform unauthorized functions.
Session Management - To identify the session management mechanism used and to determine any security control weaknesses.
Business Logic - Determine whether business logic controls can be bypassed.
Links - Review of any links to other connected Servers including middleware/database servers.

Project Deliverables

The results of the project will be documented in a Security Assessment Report, which will include the following:

• Executive Summary with a matrix of high priority issues identified and “layman’s” description of impact suitable for senior management 
• Comments on common areas of security weaknesses. 
• Technical Overview of issues identified including: 
  • Name of web application
  • Security weakness (e.g. Input Validation flaw allows Denial of Service Condition) 
  • Potential Impact (eg. High, Medium, Low)
  • Description of impact (eg. An authorized user can insert invalid input into the application causing a denial of service condition requiring full system reset)
  • Evidence of impact (e.g. screen shot, system log extract, system code extract)
  • Technical Description of Suggested Fix (e.g. perform known good input validation of the following form fields in the web application)
• Videos of the successful attack patterns to be used to highlight to management.
 

Vulnerability Assessments

Vulnerability Assessments help analyze your business risks. mile2 will identify security holes and vulnerabilities within an organization’s infrastructure. Unlike penetration tests, where the objective of the test is to compromise or circumvent a system’s controls by emulating a hacker, a vulnerability assessment’s purpose is to identify security holes and  vulnerabilities without penetrating the system with an exploit technique. After completion of the vulnerability assessment, mile2 will produce detailed reports which enable our clients to manage and remediate the discovered vulnerabilities. The tests are conducted on both external and internal systems.

Social Engineering

Skills used by Social Engineers to facilitate the extraction of information from an organization using technical and non-technical methods. Computer fraud, black-hat hacking, cyber-terrorists; these new phrases describe an innovative generation of criminals that use over-the-wire technology to attack us, steal from us and terrorize us. However the best tool in their arsenal is not new. It is only used by the most experienced, the most dangerous and the boldest hackers - it is called Social Engineering...it simply means deception.

Does it work? Can seemingly smart people be easily deceived? Kevin Mitnick, who served five years in prison for repeated hacking said in testimony before Congress on the subject of Social Engineering, “I was so successful with that at attack that I rarely had to resort to a technical attack."

Digital Forensics

The simple definition of Computer Forensics is a technological, systematic inspection of the computer system and its contents for evidence or supportive evidence of a crime or other computer use that is being inspected. Computer forensics requires specialized expertise that goes beyond normal data collection and preservation techniques available to end-users or system support personnel. One definition is analogous to "Electronic Evidentiary Recovery, known also as e-discovery, requires the proper tools and knowledge to meet the Court's criteria, whereas Computer Forensics is simply the application of computer investigation and analysis techniques in the interests of determining potential legal evidence. Computer forensics experts investigate data storage devices, these include but are not limited to hard drives, portable data devices (USB Drives, External drives, Micro Drives and many more). Computer forensics experts: Identify sources of documentary or other digital evidence. 1. Preserve the evidence. 2. Analyze the evidence. 3. Present the findings. Computer forensics is done in a fashion that adheres to the standards of evidence that are admissible in a court of law.

http://en.wikipedia.org/wiki/Computer_forensics