Free Security Tests
Denial of Service Attack, Hacking, Intrusion, Penetration,
Flooding, Fraud...
No matter how extensive (or expensive!) your security systems
are, there is only one way to find out if they are functioning
correctly and preventing unauthorised access to your private
company networks and data - to test them! What damage could
be done if your company lost its records or if a competitor
got hold of them?
Clients, accounts, passwords and even alarm codes may be
stored on a publicly accessible computer in your office. You
already know how
important security is but its always difficult and costly
to work out how secure you are and how secure you need to
become.
Why not get tested for free? Our penetration assessment is
a quick, easy way to see your network as a hacker would see
it....Our award winning automated
system will show you clearly which computers and which "security
holes" are putting your data at risk. We will attack
any computers we find from the
Internet and subject them to a real, controlled hack. This
invaluable, personalised report is available free using our
Nessus scanner.
We will attempt over 744 attack techniques to gauge the level
of existing security for both your office and your site. If
necessary, we will also conduct complementary research and
a site survey. The results of our tests are emailed to you
automatically and we will also provide a written report
with easy to understand tips and advice on dealing with any
vulnerabilities found.
For more information, and to sign up instantly for a free
test call us free on 0800 980 5125 or email security@deepnetworks.net
Proposal
We are offering a class leading penetration test essential
to all businesses with any type of Internet connection. The
tests will demonstrate which computers on a company network
are vulnerable to attack. The test will show what to do to
correct the problem and will also allow an easy choice of
security solution where further problems are found (from thousands
of products).
The quality of our processes is evident both from our personnel
including world renowned Linux and IP expert Adam Maurice
and also some of the clients we have performed tests for including
those in the aerospace and defence industries. We are able
to guarantee a very fast turnaround of under 24 hours if required
from placement of order to receipt of completed test. Our
systems can handle hundreds of simultaneous tests and our
personnel are available to undertake more detailed analysis
and provide comment at all times.
Why should I worry?
As the millions of personal computers of the world move
from dialup lines to permanent connections such as ADSL or
ISDN, a vast new array of potentially soft targets turn up
on the Internet, for crackers to use, sometimes for fun, and
sometimes to stage further break-ins.
Automated scan tools can quickly pass over an entire domain,
and report on machines that appear to be insecure. This is
the 90s Internet version of wardialing, made famous in the
film WarGames, but 100 times as deadly.. with more powerful
programs, faster connections and more underground web sites,
even unsophisticated computer users can scan 1000s of machines
in an evening for simple configuration mistakes. Even if a
particular security mistake only occurs with .1% of users,
when a cracker can scan 1000 PCs in less than an hour, by
the time they have listened to a single CD, 2 or 3 open PCs
can be unearthed. It is a great time to be a cracker.
But I have a virus tool
Todays virus tools will not tell you that your machine has
been compromised, they will not warn that your hard-drive
is visible on the Internet, or that your FTP server has no
password. An up-to-date virus scanner on the windows platform
is vital but it is only half the story
But.. I turned off file and print sharing!
Programs you purchase or download and install are more and
more network aware, windows file and printer sharing is only
one possible gateway into a machine. There are 65535 different
ports that a program, or part of your operating system, can
listen on. Do you know what is actually active and waiting
for connections on your PC right now?
I should just buy a firewall
For security on the Win98 or WinNT platform, we recommend
a correctly installed hardware firewall, or a commercial software
firewall, or NAT internet sharing software, in that order
of desirability. Lock yourself in your house, close all the
windows. Are you sure you are safe from burglary? What's the
best way to be sure? Did you leave the keys under the front
mat accidently? One good way is to hire a friendly burglar,
and ask them to scout around and give you a report. That is
what we do.
Why a scan is good security
Any intruder will use a scanning tool to get an overview of
your security, either as part of a domain pass, randomly,
or because they are targetting you specifically. Anyone active
on the internet knows that as soon as you use software that
leaves your IP address in a public place, like a usenet posting,
ICQ, ftps or certain shareware utilities, you will become
instantly the target of curious probes, some from machines
on the other side of the world. If you have weak security,
these probes can turn into a break-in. If you offend someone
in a public forum, your machine can be crashed by them, or
disabled. If this is your business, they have closed you down.
I am pretty sure I am safe
We have run over 32,000 scans on individual machines. Only
3% of those machines received a perfect score. 97% of them
had one or more possible weaknesses, some had multiple weaknesses,
These included unneeded network services, public machine names
or usernames, guest accounts, routers with weak configuration
protection, printers visible for anyone to use and more...
Are you still sure?
Why repeated scans are useful
Good security systems often use a trip-wire. A silent alarm.
We can be your trip-wire.. After your computer, or computers
have been scanned, we can keep their distinct fingerprint
on file. At your command or regularly, we can re-scan and
when this fingerprint changes, even slightly, you can be alerted.
It may simply be some new web server you installed. Or it
may be you installed a product that has a new service on it..
or it may be you are now unknowingly running Back Orifice
from TCDC, or if you are a small business, a telnet port has
been opened up on your firewall.
Security Packages
Network enterprises demand comprehensive security. As the
network evolves, so must the security of the network. We are
focused on protecting your organization's most valuable asset-your
information. By focusing purely on network security, we provide
flexible, state-of-the-art solutions. With expertise in implementing
security in large, complex networking environments, we can
protect your information from unauthorized access, disclosure,
modification, or destruction.
Security Testing
Regular checks from monthly to real-time.
Complete reports : We will not only tell you what's wrong
on your network, but will, most of the time, tell you how
to prevent crackers from exploiting the security holes found
and will give you the risk level of each problem found (from
Low to Very High)
Up-to-date security vulnerability database. We mostly focus
on the developement of security checks for recent security
holes. Our security checks database is updated on a daily
basis.
Includes interviews with your ISP and other suppliers from
a neutral, expert perspective.
Internal checks because reputable authorities such as the
National Audit Office still maintain that internal attacks
are much more common than external hacks.
We also offer:
- Firewalls and Network Security Products
- Anti-virus products, installation, maintenance and consultancy.
- Bespoke security testing for larger organisations.
- Ethical Hacking
- Security Policies
- E-Commerce Security
- Server Monitoring
- Encryption
- VPN
- Anti-Spam
- Site Access Control
|
