Application Security

Get Started. It's Free
or sign up with your email address
Rocket clouds
Application Security by Mind Map: Application Security

1. Hardening Practices

1.1. updates

1.1.1. Auto

1.1.1.1. pros

1.1.1.1.1. set it and forget it

1.1.1.2. cons

1.1.1.2.1. latest update conflicts with other apps

1.1.2. Workstation update managment

1.1.2.1. WSUS

1.1.3. track changes

1.1.3.1. keep a log

1.1.3.1.1. hard log reccomended

1.1.3.2. software

1.1.3.2.1. 3rd party packages exist

1.1.3.2.2. WSUS

1.1.3.3. be a team player

1.1.3.3.1. keep comm

1.1.3.3.2. people move on

1.2. OS/NOS

1.2.1. removal

1.2.1.1. unnessesary

1.2.1.1.1. software

1.2.1.1.2. options

1.2.1.1.3. services

1.2.1.1.4. Examples

1.2.2. existing/needed services

1.2.2.1. configure properly

1.2.2.1.1. Examples

1.2.2.1.2. File safegaurds

1.2.3. Server

1.2.3.1. system files

1.2.3.1.1. files should be stored on a separate disk or partition to ensure these system files are not accidentally accessed or removed

1.2.3.2. Do

1.2.3.2.1. apply

1.2.3.2.2. check vender website frequently for news and updates

1.2.3.2.3. secure behind locked door

1.2.3.2.4. install HIDS

1.2.3.3. Don't

1.2.3.3.1. Surf Web

1.2.3.3.2. install software from fly by night company

1.2.3.3.3. install patch

1.2.3.4. Server admins

1.2.3.4.1. activate security options

1.2.3.4.2. Know

1.2.3.4.3. Logs

1.2.3.4.4. ACL

1.2.3.4.5. harden your system

1.2.3.4.6. Know thyself do you

1.2.3.4.7. Be very familiar with different types of security vulnerabilities inherent with each type of Internet server and know how to prevent them from being exploited.

1.2.3.4.8. balance

1.3. Good Practice

1.3.1. start with nothing and add as needed

1.3.1.1. not the other way around

1.3.1.2. least privledge

1.4. baselines

1.4.1. history of past security vulnerabilities

1.4.1.1. compile

1.4.1.2. time intensive

1.4.1.2.1. length

1.4.1.2.2. 2-3 weeks minimum

1.4.1.2.3. nights and weekends

1.4.2. industry security standards

1.4.3. info gather

1.4.3.1. organizations

1.4.3.2. associations

1.4.3.3. other admins

1.4.3.3.1. don't be shy talk!

1.4.4. Tools

1.4.4.1. MicroSoft

1.4.4.1.1. Microsoft Baseline Security Analyzer (MBSA)

1.5. Templates

1.5.1. documented minimum

1.5.2. group policies

1.5.2.1. accounting

1.5.2.1.1. financial data

1.5.2.1.2. salaries

1.5.2.2. marketing

1.5.2.3. Sales

1.5.2.3.1. pricing

1.5.2.4. HR

1.5.2.4.1. confidential data

1.5.2.5. each grop policy uniqe based on role

1.5.2.6. be mindful that if employee moves to a diff dept rights must be added/taken away

1.5.2.7. Role based access control

1.5.2.7.1. most popular

1.5.2.7.2. highly customizeble

1.5.2.7.3. fairly secure

1.5.2.7.4. centraly administered

2. Setup

2.1. Lay down the law

2.1.1. prohibit

2.1.1.1. P2P

2.1.1.1.1. Limewire

2.1.1.1.2. UTorrent

2.1.1.2. Torrent apps

2.1.1.3. IM

2.1.1.3.1. for corporate communications

2.1.1.3.2. vulnerable to packet sniffers

2.1.1.4. certain email attachements

2.1.1.4.1. .exe

2.1.1.5. torrent search engines

2.1.1.5.1. most outlawed

2.2. Wyatt Earp

2.3. encryption

2.3.1. set it up

2.3.2. PrettyGood Privacy

2.3.2.1. email

2.3.2.2. popular

2.3.2.3. strong

2.4. education

2.4.1. teach

2.4.1.1. Hoaxes

2.4.1.1.1. emotional strings

2.4.1.1.2. new virus

2.4.1.1.3. end of world

2.4.1.2. chain mails

2.4.1.3. social engineering

3. Security Apps

3.1. Personal Firewalls

3.1.1. Windows firewall

3.1.1.1. heavily critized

3.1.1.2. too integrated with OS I think

3.1.1.2.1. other examples of app heavily integrated into OS

3.1.2. Symantec

3.1.3. Mcafee

3.2. Antivirus

3.2.1. versions

3.2.1.1. email

3.2.1.2. regular

3.2.2. parts

3.2.2.1. engine

3.2.2.1.1. stays the same

3.2.2.2. signature files

3.2.2.2.1. viruses contain or create a specific binary code detectable by the signature file

3.2.2.2.2. engineers make the signature files

3.2.3. Price

3.2.3.1. about $40

3.2.3.2. military next to nothing or free

3.3. Caution!

3.3.1. if when installing an app and the install program prompts you to turn of your AV be weary!

3.3.2. If you turn off AV in order to install a program or to make some change remember to turn it back on!

4. Virtualization

4.1. Honey Pot

4.1.1. decoy

4.1.2. virtual SQL

4.2. Honeypot

5. Other

5.1. related security issue

5.1.1. cryptograpy

5.1.1.1. stenography

5.1.2. Mitigation

5.1.2.1. DRP

5.1.2.2. OFFsites

5.1.2.3. backup schemes

5.1.2.4. fire resistance

5.1.3. Attacks

5.1.3.1. syn flood

5.1.3.2. DOS

5.1.3.3. DDOS

5.1.3.3.1. masters

5.1.3.3.2. managers

5.1.3.3.3. zombies

5.1.3.4. MITM

5.1.3.5. DNS Poisening

5.1.3.5.1. prevent

5.1.3.6. TCP/IP Hijacking

5.1.3.7. SMURF

5.1.3.8. blue jacking

5.1.4. Communication protocols

5.1.4.1. File transfer

5.1.5. Device Security

5.1.5.1. network devices

5.1.5.1.1. switch

5.1.5.1.2. router

5.1.5.1.3. AP (wireless)

5.1.6. Intrusion Detection

5.1.6.1. Sensor

5.1.6.1.1. connected via tap

5.1.6.2. types

5.1.6.2.1. based

5.1.6.3. venders

5.1.6.3.1. Norton