international business strategy
About Us Business Intelligence IT Security Military Shop Contact
Our Computer Services

» Computer Security
» Consulting
» Project Management
» Security Design
» Project Realization
» Vulnerability Assessments
» Penetration Tests
» On-Site Assessments
» Security Scans
» Disaster Recovery
» Content Management
» Security Policy
» Web server Analysis
» Managed Services
» Network Monitoring
» Application Development
» Secure VTC

» Security Compliance
» HIPAA
» Graham-Leach-Bliley
» Sarbanes-Oxley
» CISP / PCI
» Security Breach Act
» NIST-800
» ISO 17799/BS7799

» Data Center
» Offsite Backup
» Data Storage
» Web Hosting
» Hosting Resellers
» Dedicated Servers
» Redundancy Solutions
» SSL Certificates

» Staffing Services
» Technology

» Technology
» Products
» eShop

 
Information
» Documents
» Links
» Partners
» Purchase
» Purchase Options
» Technical Support
» Newsletter


business international risk strategy

 

Security/confidentiality statement and FAQ's

 

Important about security scans: 

As audits are being preformed, a detailed, time stamped log is maintained of all actions. If penetration tests, vulnerability assessments, or network audits are requested by the customer the tests will be limited to probes as to not cause disruption of business (in any manner). Depending on what type of security audit you choose, the procedure, tools and reports may vary.

All audits are done only with written permission from a company officer on company letter head. If necessary a hold-harmless will be requested.

STEALTH - ISSŪ Inc. shall at all times during and after the audit keep confidential and not divulge to anyone, other than authorized employees and representatives STEALTH - ISSŪ Inc. and the Customer, any confidential information that has been provided to STEALTH - ISSŪ Inc. for the purposes of performing the audit.

STEALTH - ISSŪ Inc. agrees to keep confidential the details of any and all vulnerabilities discovered during the course of the scan it performs for the customer. It is agreed that these details cannot be released to third parties by STEALTH - ISSŪ Inc. unless the prior, written authorization is obtained from the Customer. The Customer is free to utilize these details for any purpose permitted by law.

Audit reports are made accessible to the customer via a secure login mechanism on STEALTH - ISSŪ Inc servers or encryption devices. The customer is responsible for ensuring that they do not divulge their userid or password to any unauthorized individuals.

For additional security assessments please visit our penetration test, vulnerability assessments, security compliance and internal network audit pages.

 

Frequently Asked Questions for general security scans

  1. What is a security scan?

  2. How does it work?

  3. What are the benefits running your audits?

  4. Will a scan bring my network down?

  5. Do you run Denial of Service attacks?

  6. How may scans will you run against my IP addresses?

  7. What tools do you use?

  8. What is the number of machines that I can scan?

  9. Which platforms do you audit?

  10. I have a firewall. Do I need this service?

  11. Will a scan fix the vulnerabilities automatically?

  12. Will this guarantee the security of my network?

  13. If I already own a port scanner why would I need your service?

  14. I have my own vulnerability scanner. Why would I need yours?

  15. What are some of the common vulnerabilities found?

  16. What type of customization would be allowed?

  17. What are the auditing service options?

  18. What is CVE?

  19. What are the well known services and ports?

  20. Why don't you always scan all TCP and UDP ports?

  21. How long does it take to run an audit?

  22. How often is the test database updated?

  23. How often should I run this type of service?

  24. Can I scan anyone's machine?

  25. Will I be notified once the scan is complete?

  26. What type of reports will I receive?

  27. How long will it take for the management report to be ready?

  28. Can you email me the audit results?

  29. What security measures are taken to ensure that no one else has access to my reports?

  30. Will you have technical support available if I have any questions as it relates to the reports?

  31. How can I purchase a security scan plan?

What is a security scan?

The Security Scan is an easy to use way toassess your network perimeter for known security problems. The scan can be done in your own network or from the outside. All work is done by us with the latest technology that is on the commercial market.

How does it work?

A security scan simulates the typical activities of a hacker by testing for the presenceof over 1,000 known vulnerabilities, open ports and much more. 

What are the benefits of running your audits?

Attracting thousands of users all over the world, Security Audits are the most comprehensive, up-to-date and cost-effective security auditing services on the internet. The easy-to-use tool

  • provides an external view of your network from the internet,

  • scans all 65,535 ports of an IP for potential security holes,

  • examines your system with 2052 vulnerability tests for security weakness, including Windows based attacks, denial of service attacks, root exploits, CGI abuses, mail server vulnerabilities, and firewall vulnerabilities,

  • provides detailed and comprehensive report on findings, and suggests potential solutions,

  • includes the latest vulnerability tests on a regular basis.

Will a scan bring my networkdown?

We certainly hope not, but ultimately there are no guarantees. Bear in mind that an audit is considered to be an intrusive operation. We will scan your system to see if there are vulnerabilities and if requested, we will try to enter it.

The different audits have different risk levels associated with them. Our Basic Audit is a port scan that should not impact anyone's system. It is relatively low bandwidth (<50K at peak), and if it does crash your system, you should definitely be looking at doing something about this, since it is quite likely you will be port scanned by someone in the future.

A number of the vulnerability tests are denial of service attacks that are designed to test the integrity of your hardware and software. These tests focus on known problems on various computer systems, and may impact equipment it is aimed at, such as routers, firewalls, etc. For a description of the various DoS attacks included in the test suite. None of the DoS tests involve deliberate attempts to flooding your bandwidth (a trivial, non-preventable attack). DoS tests are disabled by default to reduce the likelihood of your system crashing, but you may enable them at your own discretion.

Do you run Denial of Serviceattacks?

No, the security scans are designed to not bring down your network and securityinfrastructure.

How may scans will you runagainst my IP addresses?

We will test for over 1000 known vulnerabilities. In order to provide an accurate test, we might be scanning several times to double-check the results.

What tools do you use?

We use a numbers of different security tools and techniques, includingcommercially available software and open sources tools. The major tools that are being used are eeye, ISS and Syhunt products as well as other commercial and free available products that meet the latest technology and security standards and have been approved by governmental institutions or are being used by large corporations such as American Airlines, Department of Defense, Visa, NASA, Bank of America, Honeywell, Chrystler etc. Using a combination of these tools and techniques we are able toidentify known security problems in your network.

What is the number of machinesthat I can scan?

You are not limited tothe number of scans or IP you may request. We have several packages and services we provide for our customers. Please contact us for more details or special offers.

Which platforms do you audit?

Our service has tests for virtually every platform out there, and is not limited to one particular operating system or application suite. You will find tests for Windows, Linux, Unix, Macintosh, Web servers, Database products, and more. If it can be remotely tested, we try to have the test for it available.

I have a firewall. Do I need this service?

Firewalls are great for restricting access to your network, but firewalls cannot prevent all problems. Two of the most common problems with firewalls are

  • misconfiguration allowing unwanted access

  • vulnerable services behind the firewall (e.g. web server on port 80) allowing an attacker to tunnel through the firewall, through the vulnerable service, onto the machine running the vulnerable service, from where they can attack the rest of your network from behind the firewall itself.

Many times firewalls are poorly configured and even when configured properly,each time a change is made to the Rule Base adds to the potential for error. Inaddition, firewalls are generally connection oriented, and do not protectagainst vulnerabilities in specific products, such as your webserver, that canbe exploited using accepted protocols.

Will a security scan fix the vulnerabilitiesautomatically?

No, the scan report will identify the vulnerabilities in your network and makerecommendations about the kind of corrective action that you should take.

Will this guarantee the security of my network?

No. The reports give you information as to potential areas to examine for security concerns, but you must still take the necessary steps to secure your network.

If I already own a port scannerwhy would I need your service?

A single port scanning tool is not enough on its own - we usethree separate products. You would also need suitable hardware to run aprocessor intensive scan, and if you want to scan your network perimeter fromthe outside - just like a hacker would - then you will need to buy an additionalnetwork connection.

Most importantly, you will need expertise. STEALTH - ISSŪ Inc. securityemployees are specialists and have developed a body of expertise thatfew organizations are able to match. And as with any other audit process, anetwork vulnerability assessment is best conducted by an independent party ableto provide an entirely impartial and objective appraisal and advice.

I have my own vulnerability scanner. Why would I need yours?

There are many scanners available, both commercial and open source. The benefit of using this service, however, is not in the specific technology being used, but that it provides:

  • An external view of your network.  Getting an external view of your network usually involves getting access to a machine on the outside of your network for the purpose of running your scan. The cost of setting up and maintaining this type of access can often be more than the cost of this service alone.

  • Reproducible.  As an audit mechanism, Security Audits are a low cost, reproducible audit that can be run whenever you need.

  • Low effort  Setting up and configuring a vulnerability scanner for proper operation can be time-consuming.

  • Always up to date   By using a service, you automatically receive the latest vulnerability tests without having to install them into your own scanner. We ensure that our test suite is always up to date. We provide new vulnerability tests on a regular basis as security issues/holes are found. For example, check out the tests added in the last 30 days. In addition - we tell you via our vulnerability announcement list the moment any new tests are on-line corresponding to remotely exploitable vulnerabilities, assisting you in keeping up to date on problems that may impact your network.

What are some of the common vulnerability found?

The problems we routinely find usually fall into one of the following areas:

  • Unpatched/out of date software with known vulnerabilities

  • Dangerous or unneeded services available for exploit

  • Improperly configured software allowing unwanted access to resources

What type of customization wouldbe allowed?

You can specify how often you want the scan to take place. We will schedule the scan at that time. A security scan is intended to be ascomprehensive as possible without affecting system availability or operation. Acustomized scan may yield incomplete results.

What are the auditing service options

We provide a number of different service levels and types of subscriptions. A price & feature comparison provides a quick overview of what you get with the different packages. The 5 different types of audits available:

  1. Basic Audit: a TCP port scan of over 1500 ports;

  2. Single Vulnerability Test, a selection of 2052 different vulnerability tests;

  3. Desktop Audit: a TCP port scan of over 1500 ports, and runs 611 vulnerability tests in DoS, Windows, Backdoors, Misc. & Firewalls categories;

  4. Standard Audit, providing you with a Basic Audit (port scan) and execution of all 2052 available vulnerability tests;

  5. Complete Audit, providing you with a 65,535 TCP port scan and execution of all 2052 available vulnerability tests;

Our No Risk audit is equivalent to the Standard Audit in its execution, except that we don't show you the details of the problems we found. This is useful as a way of determining whether or not you have any problems before you decide to buy any of our services.

What is CVE?

CVE stands for Common Vulnerabilities and Exposures. It represents a standard way of numbering and describing known vulnerabilities. The scanning engine we use includes CVE identifiers where available. Our test reports include these identifiers linked to the official CVE site located at cve.mitre.org.

All our tests now include, when available, related on-line cross-references, providing additional information on those vulnerabilities. Such cross-references include:

  • Cert/CC Advisories,

  • BugTraq IDs,

  • Vendors' product related vulnerabilities/solutions,

  • mailing lists, discussions and more.

There are over 6000 on-line resources available associated with the various CVE identifiers in our tests. You can search our database for tests by CVE or CVE candidate number.

What are well known services and ports?

Well known services are are services known to customarily exist on specific ports. This is different from the definition of a well known port, which is the port range 0 through 1023. From IANA's web pages, the port definitions are as follows:

The port numbers are divided into three ranges: the Well Known Ports, the Registered Ports, and the Dynamic and/or Private Ports.

  • The Well Known Ports are those from 0 through 1023.

  • The Registered ports are those from 1024 through 49151.

  • The Dynamic and/or Private Ports are those from 49152 through 65535.

The ports we audit are all well known ports (1-1023), along with about 500 ports in the 1024-65535 range. These additional ports consist both of legitimate services as well as commonly known trojans.

To see the IANA well known ports that have been assigned, check out their site at www.iana.org.

Why don't you always scan all TCP and UDP ports?

To scan all possible ports would involve scanning over 130,000 ports. While that would be thorough, there are a number of problems associated with doing this:

  • Scanning can take a long time. To scan all 64K TCP ports would take our scanner several hours. We do offer a full 64K TCP port scan as part of our advanced audit.

  • UDP ports cannot be scanned reliably. The problem with UDP ports is that they don't respond when the port is open. That would be fine, except that many firewalls will also not respond when you probe a UDP port, even if that port isn't open. The result ends up being a large number of false positives. The vulnerability tests do check for a number of UDP services, but even here, if your system is firewalled, false positives can occur.

  • Solaris systems cannot be UDP scanned any faster than 2 ports per second, due to a throttling mechanism applied by Solaris itself. Thus, a 1500 port UDP scan would take over 10 minutes, and a full 64K port scan would take over 9 hours.

Our methodology is to ensure we provide accurate results, and because the last two items make it either difficult or impossible to perform effective full UDP port scans, we have elected to limit UDP scans to checking for services (e.g. trojans) residing on known UDP ports.

How long does it take to run an audit?

This depends on the type of audit you want, the network between us and you, and how your system is configured. For unprotected computers (no firewalls or packet filtering), the times are roughly

  • Basic Audit: 30 seconds

  • Single Vulnerability Test: 5-60 seconds

  • Desktop Audit: 10 minutes

  • Standard Audit: 20 minutes

  • Advanced Audit: 90 minutes

For computer systems that are shielded by packet filtering of one form or another, the times are closer to

  • Basic Audit: 10 minutes

  • Single Vulnerability Test: 60 seconds

  • Desktop Audit: 30 minutes

  • Standard Audit: 1.5 hours

  • Advanced Audit: 2.5 hours (on rare occasions, up to 8 hours).

Regardless of how long it takes, when an audit is complete, we email you a notification that you requested an audit, and that the results are complete and available on-line or per secure or personal mail delivery.

In general, the entire scan depends on what you want to be scanned and how thorough the scan should be. All tests (internal and external scans as well as penetration tests) are done by our security staff under constant supervision. In order to ensure an accurate and detailed scan, our staff might run a scan more than once. That is our guarantee that you receive the service you have ordered.

In certain cases such as a penetration test, a detailed and thorough test requires sometimes days even weeks until we can give you an accurate test report of all risks you have in your corporate network.

How often is the test databaseupdated?

The database of known vulnerabilities is updated on a daily basis.

How often should I run this typeof service?

How often you scan your systems depends partly on how often you change theconfiguration. Re-scanning after major changes is recommended. However, newvulnerabilities come to light on a daily basis. We recommends that criticalsystems are scanned weekly, and other, less critical systems, are scanned monthlyor quarterly.

Can I scan anyone's machine?

No. You may only scan the machine which you own. Normally, that means the machine from which you are browsing.

If you wish us to scan a machine that you cannot surf from (e.g. a corporate web server), use the IP Permissions form to submit the range of IPs that you wish to be able to audit. After we confirm that you are authorized to audit the requested IPs, we'll grant your account privileges to audit those IPs regardless of where you are surfing from. Note: we offer this service only to customers that purchase auditing services.

Will I be notified once the scanis complete?

Yes - you will be alerted by e-mail once the scan is complete.

What type of reports will Ireceive?

Each scan will produce a report which will be available online in a PDF andHTML format. It will rank the vulnerabilities uncovered from low to high andprovide an explanation of the corrective and recommend action.

How long will it take for themanagement report to be ready?

The management report is produced automatically after the scanning hasfinished. The length of time the report takes to produce varies depending on thecomplexity of the scan, typically reports are available between 12 - 24 hoursafter the scan is finished.

Can you email me the audit results?

We will provide you with an email alert indicating that a scan has been completed. However, for security reasons, we will not email you the results, since email is an insecure way of sending information.

Even if we launch an audit on your behalf, the audit is run out of your account on our system, and the report is available for pick up from the same account.

What security measures are takento ensure that no one else including STEALTH - ISSŪ Inc. employees have access to myreports?

All reports and customer data are protected using a username and password. We use strong encryption and our web site uses SSL 128 bit to allow secure download of data. Remember,the vulnerabilities our scanning service finds can also be found by a determinedhacker.

Will you have technical supportavailable if I have any questions as it relates to the reports?

On issues with the scan process/reports etc YES. For specific help withparticular network/system vulnerabilities our security team can help you with additional consultancyand security implementations. This additional service is not part of the scan.

How can I purchase a security scan plan?

You can contact our security department directly to discuss the scanning option and best scan solutions for you or you can fill out our scan request and send of fax it to us.

For additional security assessments please visit our penetration test, vulnerability assessments, security compliance and internal network audit pages.

 

 

Important information:

Please check our security/confidentiality statement and FAQ's.

 

 

 

 

 
STEALTH - ISS Inc.




business risk
Affiliate Program
Purchase / Order

Home | Who We are | Business | Intelligence | Security | Military | Jobs | Contact | E-mail | E-SHOP
English | German | French | Spanish | Slovak
Copyright © 2000. STEALTH - ISSŪ Inc. All rights reserved. Terms of Use Privacy Policy