HomeCalendarCertificationsColumnsFeaturesForumResourcesVitals
 
Image
 
linkedin_logo.png rss_logo.jpg
twitter_logo.png youtube_logo.jpg
Latest Additions
 
EH-Net Login
Welcome Guest.
Lost Password?
No account yet? Register
Who's Online
We have 30 guests and 1 member online
 
Advertisement

You are here: Home arrow Resourcesarrow Toolsarrow Network Monitor
EH-Net
May 24, 2013, 12:22:06 PM *
Welcome, Guest. Please login or register.
Did you miss your activation email?

Login with username, password and session length
News: Go back to The Ethical Hacker Network Online Magazine Home Page
 
   Home   Help Calendar Login Register  
EH-Net > Resources > Tools (Moderator: don) > Network Monitor
Pages: 1 [2]   Go Down
« previous next »
  Print  
Author Topic: Network Monitor  (Read 13094 times)
0 Members and 1 Guest are viewing this topic.
tturner
Sr. Member
****
Offline Offline

Posts: 432


View Profile WWW
« Reply #15 on: January 12, 2011, 12:57:47 PM »
Quote from: chrisj on January 11, 2011, 04:42:34 PM
Quote from: tturner on January 11, 2011, 02:53:30 PM
Quote from: chrisj on January 11, 2011, 02:40:17 PM
Spiceworks looks to be pretty good too.

It may have changed in the last 3 years or so, but last time I looked at Spiceworks it was doing targeted marketing based on what it saw in your environment which raised a red flag with me. I don't feel the need to share the intimate details of my internal network with a 3rd party.

http://www.spiceworks.com/privacy/

Brought it up on twitter (follow someone else that uses it, and spiceworks themselves. That link was the end response from Spiceworks).

I'm not crazy about the idea of trusting Spiceworks to use my information responsibly. Why engage in a trust relationship unless you have to? I'd rather install an application that is used internally that doesn't phone home to anyone. Having their privacy policy tell me they won't share the information with anyone is not enough. And if you read the privacy policy they do state:

Quote
If our company should ever file for bankruptcy or be a party to a merger or acquisition, we may share the information you provide to us to a third party in connection with such activity.

You may want to have a look at the trust metrics portion of http://www.isecom.org/osstmm/
Logged
Certifications:
CISSP, CISA, GPEN, GWAPT, GAWN, GCIA, GCIH, GSEC, OPSE, CSWAE, CSTP, VCP

WIP: OSWP, GSSP-JAVA, GXPN

Udacity on hold, again. I suck.

http://sentinel24.com/blog  @tonylturner http://bsidesorlando.org
g00d_4sh
Sr. Member
****
Offline Offline

Posts: 394



View Profile
« Reply #16 on: January 13, 2011, 10:32:04 AM »
Hey H1t M0nk3y,

Good reply, and I didn't mean that those with English as a second language always have errors or anything.  Your responses have been very well written as I have seen thus far.  I try to give a bit more slack to those who have English as a second language, since I figure the Spanish speakers that read what I write where I am currently, probably cringe once in a while heh. 

I suppose in his case, he's using more youth slang and such rather than grammatical errors, though there were some missing words etc in his sentences which made me assume perhaps an ESL case.  None the less, it did not strike me as the writting of someone who would be given responsibility over the network of any company.
Logged
"Bad.. Good?  I'm the guy with the gun"
yatz
Full Member
***
Offline Offline

Posts: 222


View Profile WWW
« Reply #17 on: January 13, 2011, 11:54:31 AM »
For good measure, I wanted to say that there are reasons for taking snapshots of desktop computers.  Many VoIP call recording software companies also provide computer recording as an add-on.  Look at NICE, TelRex and Syn-Apps.

We have implemented a similar solution for the purposes of training users on proper everyday usage of business systems.  I have also used it to rearrange the business systems screen/tab order so it more adequately reflects how a normal sales call flows.

As a side effect, it is also able to verify sales employees are not surfing CNN during work hours.  Corporate spying does not apply if you are not selective and if it is publicly announced in the handbook.  Work computers are used for work purposes, and the lunch hour is for private internet access.  As long as our screen recording does not happen during 12pm-1pm, we are obeying our own rules.
Logged
"Live as though you would die tomorrow, learn as though you would live forever."

CCNA, MCSA, MCTS, Sec+, Net+, Linux+, CEH
chrisj
Hero Member
*****
Offline Offline

Posts: 1163


View Profile WWW
« Reply #18 on: January 13, 2011, 12:24:12 PM »
Quote from: g00d_4sh on January 13, 2011, 10:32:04 AM
I suppose in his case, he's using more youth slang and such rather than grammatical errors, though there were some missing words etc in his sentences which made me assume perhaps an ESL case.  None the less, it did not strike me as the writting of someone who would be given responsibility over the network of any company.

You'd be surprised. The area I'm in they teach CCNA and MCSE in high school now. They're also posting jobs for about 30K a year for admins. Places like that are only going to get the younger high school students.

One place I worked for, hired people that didn't know much and taught them what the company thought they needed to know. Management figured they could always get students (high school or college) for cheap. It was also just as draconian in practices for computer usage.

I did learn a lot there, and I wouldn't be where I am today if it wasn't for them. But I was happy to leave. Stopped drinking as heavily too... Smiley
Logged
OSWP, Sec+
H1t M0nk3y
Hero Member
*****
Online Online

Posts: 865



View Profile
« Reply #19 on: January 13, 2011, 12:35:26 PM »
Quote
I didn't mean that those with English as a second language always have errors or anything

@g00d_4sh: No worries, I didn't took it the wrong way.  Smiley

I was only trying to demonstrate that typos are normal when writting in other langages, but explaining that you want to "hack" people for a company is quite bad...  Tongue
Logged
OSCP, GPEN, GWAPT, GSEC, CEH, CISSP
g00d_4sh
Sr. Member
****
Offline Offline

Posts: 394



View Profile
« Reply #20 on: January 13, 2011, 02:22:39 PM »
Quite true H1t M0nk3y.   I guess hiring practices sometimes do go for cheapest labor over other factors.  I guess where i got into computers.. that would not fly.  There are schools in Seattle that teach CCNA and whatnot in highschool as well, but generally the kids coming out of the highschool didn't go right into a Network Admin spot, unless it was at Joe's computer repair shop... and then the network was a router and a switch, and a few boxes getting worked on.  Good point though that different areas have different computer cultures heh. 
Logged
"Bad.. Good?  I'm the guy with the gun"
ziggy_567
Sr. Member
****
Offline Offline

Posts: 361


View Profile
« Reply #21 on: January 13, 2011, 02:29:50 PM »
@yatz

The key to your arguement is that the policy is in the employee handbook and that the policy is acknowledged (in writing) by each employee. If you have that in place, go for it! Run camtasia 24x7 on every desktop. You're good to go.

The OP, however, insinuated that the users should know nothing about what he's doing. This is a completely different ball of wax!
Logged
--
Ziggy


eCPPT - GSEC - GCIH - GCUX - RHCE - SCSecA - Security+ - Network+
don
Editor-In-Chief
Administrator
Hero Member
*****
Offline Offline

Posts: 4168


Editor-In-Chief


View Profile WWW
« Reply #22 on: January 15, 2011, 03:02:56 PM »
I'm with ziggy on this one. Not only should the policy be clearly written but also be communicated with the employees. If not, then the network admin should take it upon himself to either tell them or quit.

In these tough times, quitting is easier said than done. so giving proper information to management is the right call. Let them know that they may be inadvertantly opening themselves up for major law suits and loss of reputation and $$$$. That should not only open their eyes, but it should also show them how much you're thinking about them, the company & last but not least the employees.

Don
Logged
CISSP, MCSE, CSTA, Security+ SME
chrisj
Hero Member
*****
Offline Offline

Posts: 1163


View Profile WWW
« Reply #23 on: January 18, 2011, 03:36:16 PM »
Just because they get a list of the rules, doesn't mean that they read them.

Had a case come up between last week and this week. Some people, newer hires, are listening / watching streaming media. Handbook and AUP says it's not allowed. Manager talked to offender on his staff. The reply was I didn't read it, I just signed the papers.
Logged
OSWP, Sec+
ziggy_567
Sr. Member
****
Offline Offline

Posts: 361


View Profile
« Reply #24 on: January 18, 2011, 04:00:51 PM »
In a court of law, your signature on a statement that reads "I have read the above blahblahblah" will be upheld. An employee claiming ignorance when they have signed a copy of the policy will not. I am not naive enough to believe just because its signed the employee has read and understands everything, but the company has done its due diligence.
Logged
--
Ziggy


eCPPT - GSEC - GCIH - GCUX - RHCE - SCSecA - Security+ - Network+
Pages: 1 [2]   Go Up
  Print  
« previous next »
 
Jump to:  

Powered by MySQL Powered by PHP Powered by SMF 1.1.18 | SMF © 2013, Simple Machines
Joomla Bridge by JoomlaHacks.com 		Valid XHTML 1.0! Valid CSS!
Page created in 0.066 seconds with 23 queries.
 
Exclusive Deal

sansfire13_245x90_cw90.jpg
SANSFIRE 2013
June 15 - 22

5% Off w/ Code: EHN_5

SANS Deals 4 EH-Netters
5% OFF Any SANS Course in Any Format!
Coupon Code: EHN_5 Including SANS Rocky Mountain 2013 & SANS Boston 2013
Polls
Compared to this year, 2013 will be:
 
Recent Forum Topics
EH-Net News Feeds
Latest Additions
 
         
Free Business and Tech Magazines and eBooks

© 2013 The Ethical Hacker Network
Joomla! is Free Software released under the GNU/GPL License.