Screencasts: On-screen demonstrations of today's IT tools |
 |
| 27 May 2008 | SearchSecurity.com |
|
|
When it comes to analyzing a network, protecting enterprise data, or fighting malware, there are a variety of free and commercial products available to help. In our screencasts, SearchSecurity.com's best experts will walk you through today's popular information security tools and techniques.
OSSTMM
Metasploit
Nessus
Network Security Toolkit
Snort
Google Hacking
UTM
Want on-screen demos of a particular tool that hasn't been featured? Email us your suggestions.
SCREENCASTS
OSSTMM
 An introduction to the Open Source Security Testing Methodology Manual
 The Open Source Security Testing Methodology Manual (OSSTMM) allows you to perform many security tests on your firewalls, intrusion detection systems, passwords and much more. Watch Peter Giannoulis as he introduces the manual and demonstrates how it can be used to defend machines from a brute-force dictionary attack. Learn which parts of a security architecture need to be tested and how to properly measure your results.
Metasploit
Penetration testing with Metasploit
 Metasploit allows hackers and security professionals alike to examine how well a given system can handle known exploits and payloads. Expert Peter Giannoulis demonstrates how the freely available tool can be used to test commercial and custom-made applications, servers and operating systems. In his presentation, Giannoulis shows how one unfortunate Windows user's machine can be easily taken advantage of.
Nessus
Finding vulnerabilities with Nessus
 Nessus is the granddaddy of all information security tools. While no longer an open source tool, it still exists as freeware and is actively supported with new signatures.
In this screencast, Peter Giannoulis of Bones Consulting demonstrates how enterprises can use Nessus to assess vulnerabilities and help protect critical systems and networks.
Network Security Toolkit
Opening up the Network Security Toolkit
 Built upon Insecure.org's "100 Best Tools," the Network Security Toolkit is improving the jobs of information security professionals everywhere. Tom Bowers, managing director of security think tank and industry analyst firm Security Constructs, uses this latest screencast to explore the collection of networking and security gear. Bowers reviews the basics of the browser-based security toolbox, including proper configurations and tool selection.
Snort
Snort -- Tactics for basic network analysis
 Snort is a robust tool that can be used in a number of ways to assess the security posture of a network, but it takes time to learn, and it can be tricky to obtain all the data that Snort can provide. SearchSecurity.com contributor Tom Bowers provides a demo for those using the tool for the first time. Bowers offers a brief introduction and history of Snort and explains what the IDS can do for information security pros.
Google hacking
Google hacking, infosec style
 Search engines and related tools are not only handy when it comes to finding information on the Web, but they can also help security professionals ensure an organization's intellectual property doesn't slip off the network and into the public domain. Tom Bowers demonstrates how a few basic "Google hacking" methods can offer fascinating competitive intelligence for your enterprise.
.
UTM
How to configure a UTM device
 Unified threat management technologies provide protection against various network attacks, but properly configuring UTM boxes can be a whole other battle. In this exclusive screencast, expert David Strom gives an easy-to-follow, on-screen demonstration of the configuration options available in SonicWall's unified threat management product. In simple steps, Strom explains how to set up a SonicWall box, interpret its alerts and adjust security policies accordingly to ensure that a network has optimum protection.
|
|
|
|
