Information Security Philippines

presents

Network Vulnerability Assessment Workshop

March 26, 27 and 28 2008

In today’s world, it is getting more and more important for businesses to be connected and be accessible through the Internet. Businesses now put more stock into the viability of the net in increasing their profit margin and in large extent their public exposure. Thus, more financial value gets imbued into the data that goes around the wires.

That’s where the value of information security comes into play; assessing one’s readiness in defending information assets comes as a direct result of proper Vulnerability Assessment and to a larger scale of risk management. Getting one’s feet wet on VA will benefit not only the company’s security stance but also the individual’s appreciation of what could possibly lie ahead in terms of threats and risks, realization would also set on the extent of knowledge, time and investment to fully prepare one’s company in facing the growing challenges of today and tomorrow’s Internet.

Course Objectives:

At the end of the training, you should be able to:

• Determine the boundary of analysis and schedule of assessment
• Perform threat and impact analysis
• Define and verify policies of target assets for VA
• Execute active and passive information gathering techniques
• Utilize vulnerability scanning tools
• Generate technical and managerial VA reports

Who Should Attend:

• Network Managers
• System Administrators
• IT Managers
• IT Auditors
• Security Professionals

Course Outline:

 

DAY 1

 

• • Information Security Concepts
  • The Need for Information Security
  • Vulnerability Assessment Overview
  • The Security Process
  • Information Security Life Cycle
  • Threats to Computer and Network Systems
  • What is Ethical Hacking?
  • Types of Ethical Hacking
  • Responsibilities of an Ethical Hacker
  • Skills Requirements
  • Customer Expectations
  • Relevant Laws

• Introduction
  
• Foundations

DAY 2

 

• • Formal Methodologies
  • Methodology Overview
  • Open Source and Commercial Tools
  • The Live CD Approach
     

  • • Passive Information Gathering
    • Active Information Gathering
    • Social Engineering

    • Tools and Online Resources
    • Google Hacking

  • Project Start-Up
  • Information Gathering
  • Threat and Impact Analysis
  • Reconnaissance and Enumeration

• Getting Started
• Vulnerability Assessment

DAY 3

 

• • • Technical Report
    • Managerial Report

  • Vulnerability Scanning
  • Report Generation
  • Web Application Securit
     

  • Summary
  • Information Security Policies
  • Introduction to Penetration Testing

• Vulnerability Assessment
• Synopsis

Miscellaneous

Reports

Checklists

Technical Reports

Managerial Reports

Please bring your laptop.

Trainer’s Profile:

Ariel Ben T. Senga, CISSP

Ariel is the President and CEO of SeQure Technologies, which he cofounded in 2005. He is also a Certified Information Systems Security Professional. Ariel has intensive experience in various information systems management and development in IT, communications, manufacturing, government, and engineering industries. He has conducted various engagements related to IT internal control reviews, standards compliances, and internal audit reviews.

Currently, he has been managing all of SeQure Technologies’ security services such as vulnerability assessments, penetration testing, security assessments and audits, policy controls, and network infrastructure deployments.

Ariel has developed training courses in security awareness, network vulnerability assessment and penetration testing. As with course development, Ariel has presented in Universities and Colleges in the Philippines as an information security advocate.

Training Schedule: March 26, 27 and 28, 2008 (3 Days w/ Lunch + Refreshment Snacks)

Course Fee: PhP 17,500.00 (Exclusive of 12% VAT)

Includes: Student Manual, Live CD, and Certificate of Completion

Venue: CEO Suite, 37th Flr. LKG Tower 6801 Ayala Ave. 1226 Makati City

For more details, please call or text Pamela Chua at +63 922 8742757 or email pam@poshmarketingservices.com.

Cancellation of registration should be made seven working-days before the training date. Otherwise, 50% of the training fee shall be charged. No show during the training shall be charged 100% of the training fee.

Hackers are developing increasingly stealthy techniques to evade detection.  The attacks place malicious code on web sites, then keep track of the IP addresses that have visited infected sites; if the same IP address attempts to view the malicious site again, benign content is offered in its stead.

The attacks are also capable of identifying “the IP addresses of web crawlers used by URL filtering, reputation services and search engines,” and serve legitimate content to avoid being identified as malicious.

Recent findings reveal that hackers have created a new class of highly evasive attacks which represent a quantum leap in terms of technological sophistication, going far beyond drive-by downloads and code obfuscation.

The combination of these evasive attacks with code obfuscation techniques significantly enhances the capability of sophisticated hackers to go undetected.

A follow-up study conducted by Finjan’s Malicious Code Research Centre warns of the growing presence of malicious code in online advertising.

More info at: VNUNet

National Cyber Alert System
Technical Cyber Security Alert TA07-089A
Microsoft Windows ANI header stack buffer overflow

Original release date: March 30, 2007
Last revised: –
Source: US-CERT

Systems Affected

Microsoft Windows 2000, XP, Server 2003, and Vista are affected. Applications that provide attack vectors include:

* Microsoft Internet Explorer
* Microsoft Outlook
* Microsoft Outlook Express
* Microsoft Windows Mail
* Microsoft Windows Explorer (more…)

Microsoft on Thursday released an upgrade to its Windows Defender application, raising the version number from 1.1 to 7.0. The reason behind the version change is not clear, although the release does bring a redesigned user interface and new malware detection engine.

Windows Defender supports 64-bit operating systems, but no longer runs on Windows 2000, because Microsoft says the aging operating system has left mainstream support. WGA checking will also be enforced, meaning that Windows Defender will only remove “Severe” threats from computers that do not pass validation.

System Requirements:
- Supported Operating Systems: Windows Server 2003 Service Pack 1; Windows XP Service Pack 2
- Windows Defender no longer supports Windows 2000 as it went out of mainstream support in June 2005.

Five Myths About Black Hats

Original article at:
http://www.darkreading.com/document.asp?doc_id=118169&print=true

From Matthew Broderick’s teenage phone phreak in the 1983 movie “WarGames” to today’s Russian mafia don, the image of the computer hacker has undergone some radical changes over the years.
Really, though — just who are these people, and why do they do what they do?

(more…)

5th Annual Philippine IT Security Conference
September 11- 12, 2006
Hotel Intercontinental
Makati City, Philippines 

This year’s 5th Information Systems Security conference and exhibit is dubbed: “ManilaCon 2k6:progress@risk” and is organized by the Information Systems Security Society of the Philippines (ISSSP), in cooperation with the Commission on Information and Communications Technology (CICT) and the National Security Council (NSC) towards the development and implementation of a National Cyber Security Strategy.

We need one to ensure the integration of public and private efforts to counter threats and institutionalize the protection of national and local cyber infrastructures and businesses.

We expect all security concerned CEOs, CIOs, Security Officers and Systems Administrators/Programmers to be more vigilant in securing cyberspace, not just for the protection of their respective enterprises but for the protection and security of all those existing and doing business in cyberspace.

This conference and exhibit is designed to kick-start this national effort and concern.

To join, please see below, details of the program schedule and delegate fees.

For registration or more information, please call Ellen at the ISSSP Secretariat telefax no. 750-3742 or mobile 0920-2413954. Or send email to isssphil[at]yahoo.com. You may also visit http://www.isssp.org.ph/ for other details of this conference and exhibit and/or to register online.

Signed: 

AMADO A. MALACAMAN, JR., President – ISSSP             

Angelo Timoteo M. Diaz De Rivera,  Commissioner – CICT

(more…)

I recently came across emails that at first glance came from a local bank — PNB Philippine National Bank.

I know for a fact that it is a phishing scam since I don’t have a bank account with PNB

Click on the links below for a screenshot of the PNB Phishing emails.

PNB Phishing Email # 1

PNB Phishing Email # 2

Welcome to Information Security Philippines online!

This site will be my online repository for anything related to information security here in the Philippines and abroad that I chance upon.

This will hopefully keep me from forgetting information I encounter and also hope that it will be able to help others along the way.

Various information posted on this site will be gathered from security bulletins, mailing lists, newsletters, webcasts, trainings and events, journals, magazines and various information security related websites.

Posts will be initially categorized into Security Bulletin, Privacy, Cryptography, Events — Trainings, Seminars, Conventions, Webcasts and Launchings, Tools, Guides, Infosec Certifications for both Individuals and Institutions and Reviews.

InfoSec PH — Information Security Philippines