Normally, organizations have a good inside view of their security. They know what security mechanisms are employed and what they are protecting them against. On the other hand, they rarely know exactly how their security looks from the outside. And yet, this is the view that's available to their attackers. Shouldn't you know what your enemy probably already knows about you?
Internet exposure management is a process aimed at analyzing your perimeter security
using systematic, automated discovery techniques for locating points
of potential intrusion. We collect information about your Web
applications, routers, firewalls, public servers, exposed databases,
modem dial-in points etc. In a nutshell, we examine your
organization's electronic fences, walls, doors and locks for
possible entry points, which is exactly what your attacker would do. A detailed report is generated including exact times and targets.
Periodic internet exposure analysis is the best method for
maintaining control and management of your outside security view in the course
of time. There are many reasons why your outside security view might
change; for example: the administrator might have "temporarily"
opened a port in the firewall and forgot to close it, a web server
had to be upgraded and dangerous sample scripts were unwittingly
installed with it, or one of your employees installed a modem in his
PC so that he could access the Internet from his home.
Your benefit from an internet exposure analysis is threefold: (1) you get to see the attacker's view of your organization, (2) you detect unwanted and unauthorized changes in your perimeter security and (3) you test your intrusion detection mechanisms against security probing, which is the usual prelude to a real attack.
Detecting vulnerabilities of your digital boundaries and closing
known security holes are fundamentals of basic security
hygiene.
|
