.

Countermeasures to Client Side Attacks

<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Sun May 04, 2008 12:05 am

Countermeasures to Client Side Attacks

Hello,

I was doing a research paper on client-side attacks and needed to include a few more counter measures. I know there's alot of security people that use this forum. Anyone willing to throw out some useful countermeasures my way. Thanks in advance!
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP
<<

LSOChris

Post Sun May 04, 2008 9:46 am

Re: Countermeasures to Client Side Attacks

care to put what you have already?

but i'll give you one for free. noscript in firefox.
<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Sun May 04, 2008 11:28 am

Re: Countermeasures to Client Side Attacks

Yeah, I had a few.
- Keep AntiVirus/Firewall/IDS Software up-to-date
- Keep your OS up-to-date
- Keep your software versions up-to-date
- Refrain from opening mail from untrusted/unknown sources
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP
<<

LSOChris

Post Sun May 04, 2008 1:43 pm

Re: Countermeasures to Client Side Attacks

you'll also want to mention a locked down group policy forcing least privilege across the domain.

in there you can do things like setting browser zone and office macro settings to the appropriate level for the organization and ideally not let the user lower those settings.
<<

KrisTeason

User avatar

Hero Member
Hero Member

Posts: 515

Joined: Sat Sep 08, 2007 7:48 pm

Location: /dev/null

Post Mon May 05, 2008 12:50 am

Re: Countermeasures to Client Side Attacks

Ight, thanks for the reply Chris, good to get info from a respected member of this forum.
eCPPT (Silver/Gold), eWPT, GSEC, GISP, GCIH, OSCP, OSWP
<<

shawal

Jr. Member
Jr. Member

Posts: 88

Joined: Mon Mar 10, 2008 1:24 pm

Post Mon May 05, 2008 8:32 am

Re: Countermeasures to Client Side Attacks

awarness, one of the most important vectors of the client side attacks is social engineering, training users, and admins and briefing them on these kind of attacks is one counter measure also :)
RHCE, GIAC GCIH.
<<

LSOChris

Post Mon May 05, 2008 8:14 pm

Re: Countermeasures to Client Side Attacks

KrisTeason wrote:Ight, thanks for the reply Chris, good to get info from a respected member of this forum.


oh well hopefully one of those guys will reply soon.
<<

rok

Newbie
Newbie

Posts: 39

Joined: Sun Apr 27, 2008 2:18 am

Post Tue May 06, 2008 1:10 am

Re: Countermeasures to Client Side Attacks

oh well hopefully one of those guys will reply soon.


lol... ;D
<<

Bogwitch

Jr. Member
Jr. Member

Posts: 51

Joined: Wed Aug 16, 2006 3:29 am

Post Tue May 06, 2008 4:23 pm

Re: Countermeasures to Client Side Attacks

It is worth remembering in order to minimise the impact of a client side attack, it is advised to run with least privilege. I have lost count of the number of times I have seen admins surfing the Internet, reading email etc. with full domain admin access...
CISSP, C|EH, C|HFI

Return to Network Pen Testing

Who is online

Users browsing this forum: No registered users and 4 guests

cron
.
Powered by phpBB® Forum Software © phpBB Group.
Designed by ST Software