Home page logo
/

pen-test logo Penetration Testing mailing list archives

RE: System Security Audits
From: "Skid" <skid () mad scientist com>
Date: Mon, 1 Dec 2003 11:25:26 +0200


Trojans/Viruses etc. are constantly changing things. Making a CD will
mean you'll have to make a new CD all the time to keep up-to-date with
the changes, sounds like one big mess to me.

-----Original Message-----
From: Peteris Krumins [mailto:newsgroups () lf lv] 
Sent: Saturday, November 29, 2003 12:01 AM
To: pen-test () securityfocus com
Subject: System Security Audits



 Hello,

  I have a question about doing system (Windows) security
  audits.
  By system security audits I mean things like checking if computer
  is free of malware, trojans, viruses, if user has appropriate
  permissions (not too high or to say if user has restrictive
  permissions) etc.
  
  I have a couple of ideas which i could use, one is to create
  an universal CD with all the stuff needed. Everything is on the
  CD, nothing will be installed on the client's computer.
  The Audit Team just puts CD in, runs applications and that's it.

  The other is to bool from a CD on the client's computer
  which would bring us to some different environment (probably
  linux). As booted mount the filesystems and do all the
  audit stuff from such environment.

  Or, please, suggest any other methods that could be used.


P.Krumins


------------------------------------------------------------------------
---
------------------------------------------------------------------------
----


---------------------------------------------------------------------------
----------------------------------------------------------------------------


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]