|
|
Feel Good About Your Network
|
|
IDsec Limited
31-33 College Road
Harrow, Middlesex
HA1 1EJ
United Kingdom
(Map)
T: 020 8861 2001
F: 020 8861 3433
www.idsec.co.uk
Copyright © 2008
IDsec Ltd
5.08
|
|
|
|
|
|
|
|
|
|
 |
Superwalk runs regular scans of an Internet gateway,
showing all hosts that give any response. It also uses a
number of techniques to find any security vulnerabilities.
|
|
|
|
|
Frequent changes take place within Internet gateways as new
services are implemented.
Each has the potential to introduce security problems,
but testing after
every change can be costly.
Superwalk can help identify errors as quickly as possible.
It is an automated
service that detects Internet-visible problems as they occur
and allows system managers to take swift action.
|
|
|
We want you to get the benefits as quickly as possible.
IDsec provides Superwalk as
a remote service, running from a dedicated high-speed Internet location.
We set up and maintain the system, and provide
guidance on interpreting any anomalous results.
The system scans and gathers information from services (IP, ICMP, UDP
and TCP) offered to the Internet, information made available through
banners and other output, and known vulnerabilities in services
offered. We use input from a range of tools as well as our own
Netwalk software. Results of the scans are
presented on a secure web server and made available to browsers with
appropriate credentials.
|
|
|
Superwalk runs automatically, but you can see current or historic
results at any time:
services,
information provided and vulnerabilities.
In addition, the results are compared with the previous scan and a
change report is provided when there are significant differences from the results of the
previous scan.
This means that unexpected changes in services
offered by the gateway are readily apparent: you can see servers running different or old versions of
the application services, servers that give excessive information
through their banners and networking components such as routers
that should not be visible.
Superwalk is configured by
IDsec, using parameters and target lists supplied by the customer.
It can probe the target set every
day, week or month, and the time at which it
runs can be chosen to suit operational schedules.
If required, Superwalk can send a simple SMTP message to a defined
address every time a change is detected.
A real example of the output produced by Superwalk is available
on-line at http://www.idsec.co.uk/products/superwalk/sample.
(This area is password
protected: please phone us to get
access.)
|
|
|
The benefits of Superwalk come at a surprisingly low
cost.
IDsec can carry a monthly scan of
up to 4 IP addresses for just £900 per annum. Or, for a
larger organisation, we can provide daily scans of up to 64 hosts for
£9,000 per year, with a minimum contract of one year.
All maintenance is included, including the
resolution of any problems that arise in the scanning, reporting and
presentation of the Superwalk service.
Regular updates are carried out by IDsec to enhance the
underlying tools, with detailed release notes issued to
customers via e-mail.
|
|
|
As an optional extra, we can provide a written commentary on Superwalk results
for you, as they become available.
We examine the latest results and report on any vulnerabilities
or other anomalies that have arisen since the previous scan,
together with general recommendations for resolving the issue. This report will normally be issued by e-mail within two working days of the scan's completion.
|
|
|
|
Network Penetration Testing
|
|
External penetration testing puts us in much the same position as a potential
intruder, trying to break into the Internet gateway and systems behind it.
|
|
|
Web Application Testing
|
|
Classic penetration testing at the network level has its place,
but many new attacks are aimed at interactive web
applications. A thorough external test minimises these
risks.
|
|
|
|
