Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.






Lost Password?
No account yet? Register
Who's Online
We have 49 guests and 1 member online
 
Free Business and Tech Magazines and eBooks

You are here: Home
EH-Net
May 20, 2013, 08:45:55 AM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
  Home Help Calendar Login Register  
  Show Posts
Pages: 1 [2] 3 4 ... 6
16  Ethical Hacking Discussions and Related Certifications / Security / recommended softwares & Hardware for securing internet cafe on: December 24, 2012, 01:34:22 PM
hi...One of my friend had recently launched his Internet cafe..there was discussion with him for what and why things need to be done or taken for care for securing the internet cafe. i was bit worried as i he was only relying on Antivirus software...Which i think not enough...
required yours suggestion pls...

Thanks
17  Ethical Hacking Discussions and Related Certifications / General Certification / Monitoring day to day vulnerability scan results on: December 04, 2012, 02:49:28 AM
Being responsible as an Infosec admin, i have to scan the 30000+ systems (laptop,desktop,servers, Devices). I am using nessus scanner to scan.
Challenge i m finding is to export the CSV and then take out Falsepositives.Then i need to implement action of resolving the vulnerabilties by forwarding to technical teams. Also it very difficult to keep the track of vulnerabilities on excel.

Lookin for the best practise & automate process of vulnerability tracking so as to work on proactive solutions and to identify the count of vulnerabity reported on each system through every scan cycle

Thanks



18  Resources / Tools / Re: tools ot Modify DACL of remote machine on: September 18, 2012, 01:06:34 AM
Since the SUBINACL is working fine...looking for proactive solutions via Group policy...ANy suggestions....
19  Ethical Hacking Discussions and Related Certifications / Web Applications / Re: SSL/TLS vulnerability on: August 28, 2012, 07:11:29 AM
Hi johnson,
tried the given solution still the vulnerability persist.
Also in tool i find below details of vulnerability

Plugin Output
Negotiated cipher suite: AES128-SHA|TLSv1|Kx=RSA|Au=RSA|Enc=AES(128)|Mac=SHA1

need help to understand the nessus findings
20  Ethical Hacking Discussions and Related Certifications / Other / Solution for Multiple Vendor RPC portmapper Access Restriction Bypass on: August 28, 2012, 07:07:14 AM
Hi,
In most of the windows 2003 storage server reported vuln for
Multiple Vendor RPC portmapper Access Restriction Bypass by Nessus and recommended solutions is
"Apply the relevant patch from the referenced documents for EMC Legato
Networker and IBM Informix Dynamic Server.  If a different application
is being used, contact the vendor for a fix."
Unable to understand the fix....

Does RPC port mapper 111 is used by Storage ...?
looking for disabling the port thru registry if any...?

kindly suggest

21  Ethical Hacking Discussions and Related Certifications / Web Applications / SSL/TLS vulnerability on: August 26, 2012, 04:20:12 AM
Hi..

Through Nessus scanner i am finding lost of vulnerability related to SSL/TLS

Vul : SSL/TLS Protocol Initialization Vector Implementation Information Disclosure Vulnerability on w2k3 & 2008 servers as well

I had applied all the mentioned solution from Microsoft of disabling the SSLv2 and TLS 1.but still struggling to fix the same.
Kindly suggest the solutions

Thanks
22  Ethical Hacking Discussions and Related Certifications / CEH - Certified Ethical Hacker / Re: Career in CEH on: June 21, 2012, 03:40:29 AM
CEH have good scope across globe .
23  EH-Net / Special Events / Re: [Article]-Survey of Hacking Movies: Framing the Debate on the Gateway Drug into the Hacking Cult on: June 17, 2012, 12:09:21 PM
Also i would like to add "Hackers";Die hard 4 & Italian Job (role of napster)to some extent.
24  Ethical Hacking Discussions and Related Certifications / Other / Re: Symantec VERITAS vulnerability in HP/UNIX 11.23 on: June 08, 2012, 03:07:30 PM
Any way.. to check what nessus is doing to detect such vulnerability ?Also I am  only resposible for mitigations,Scanning is done by Separate team. How in technical terms i need to investigate the case or what question i need to do o the scanner team. should i ask for any logs....?
25  Ethical Hacking Discussions and Related Certifications / Other / Symantec VERITAS vulnerability in HP/UNIX 11.23 on: June 07, 2012, 05:50:06 AM
vulnerabilities reported in HP/UNIX 11.23 for “Symantec VERITAS Enterprise Administrator Service (vxsvc) Multiple Integer Overflows”
Though applying required patch “PHCO_42173” Nessus scanner is reporting same vulnerability for the server again
Kindly let me know if any had faced such issues...
26  Ethical Hacking Discussions and Related Certifications / Web Applications / Re: vulnerability :SSL Medium Strength Cipher Suites Supported on: May 30, 2012, 12:17:15 AM
You got it right Data_Raid....reported vulnerability are on IIS servers.
with the same Nessus Plugins ID.
27  Ethical Hacking Discussions and Related Certifications / Web Applications / vulnerability :SSL Medium Strength Cipher Suites Supported on: May 29, 2012, 02:09:46 PM
In my recent scan of Nessus i found most of the system reported with "SSL Medium Strength Cipher Suites Supported". I tried the solutions mentioned in "http://blogs.iis.net/sakyad/archive/2008/12/11/enforcing-ssl-3-0-and-removing-weak-encryption-vulnerability-over-ssl-iis-6-0-and-isa.aspx" but some of the servers are still reported for vulnerability.
Kindly suggest the way out for resolving the same in more than 1000+ server remotely.
28  Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Re: Remote fixing tool on: May 09, 2012, 06:18:07 AM
Hi,
there are vulnerabilities related to settings as well, related to MS patches taken care by Remote deployment tool.
Pls find the attached for the details of vuln reported
Wondering for the setting issues.

29  Ethical Hacking Discussions and Related Certifications / Network Pen Testing / Remote fixing tool on: May 08, 2012, 07:02:34 AM
Hi,
Since i am scaning with nessus tool more than 15000 machines on which i am finding more than 200+ different vulnerabilities. Since i filtered False positive i m finding nearlt 190 odd vulnerabilities.
Looking for some automate tools to fix the Nessus reported vulnerabilities remotely.

thanks in Advance
30  Ethical Hacking Discussions and Related Certifications / Network Pen Testing / reset local admin password remotely on: March 17, 2012, 02:24:51 PM
Hi,
being the system admin, i am looking for resetting local admin password of Windows 7 machines remotely. We are implementing Unique password policy for each and every systems.
Kindly suggest any tool or script to reset the password remotely, as i was working in pspasswd tool  which doesn't works for windows 7 machines

Thanks in advance.
Pages: 1 [2] 3 4 ... 6
Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com
Valid XHTML 1.0! Valid CSS!
Page created in 0.069 seconds with 21 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Advertisement

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.