Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: For better security, ditch the automatic tools

29 Sep 2010   #1
JMH

Win 7 Ultimate 64-bit. SP1.
 
 
For better security, ditch the automatic tools

Quote:
I'm often paid to run expensive vulnerability scanning tools against hundreds or thousands of computers. Whereas vulnerability scanning has much value, I find that my manual reviews of those same assets usually reveals things that the automated scans do not.

Automated scanners can only find what they are pre-programmed to seek -- no more, no less. But we humans are good at spotting seemingly innocent-looking yet out-of-place details, then following the intuitive trail to the root cause. When I'm asked to run both an automated vulnerability scan and a manual scan (which is most of the time), I always find more interesting and high-criticality issues using my own forensics analysis.

For example, many times I've found compromised computers with hacker tools sitting in strange directories on the hard drive, malware that is undetectable to the organization's antivirus scanner. Recently I found a remote access Trojan disguised as the client's antivirus software process, but it started from a popular browser's temporary file storage location. The automated vulnerability scanner tool had missed the malicious bot, but my interest was piqued by the fact that two antivirus processes with the same name were running at the same time. I thought it was a common type of memory bug until I saw the strange location.
More -
For better security, ditch the automatic tools | Security Central - InfoWorld


My System SpecsSystem Spec
.

Reply

 For better security, ditch the automatic tools




Thread Tools





Similar help and support threads
Thread Forum
Some Security Tools Fail With Multipath TCP
Source A Guy
Security News
HP Security Tools
I am having hp-6930p notebook with preinstalled fingerprint device. I don't know how to get it to work. Installed HP Protect Tools Security Manager Suite software with driver Authentic Fingerprint Driver - 32bit, I found both links on this site. I run security manager as admin, I see " There is...
Hardware & Devices
Does Windows Security Essentials Conflict with Other Security Tools?
We Answer: Will Windows Security Firewall Conflict with Outpost Pro Firewall?
Security News
Call to change PC security tools
More - BBC News - Call to change PC security tools
News
Data Security Component Cut from Windows 7 Dev Tools
The development tools released in Beta for Windows 7 Beta Build 7000 have shipped without a data security component that Microsoft has labeled deprecated. In this regard, developers will find that they will no longer come across CAPICOM.dll in the recently launched Microsoft Windows SDK for Windows...
News

Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 03:38.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App