1 / 16

On the cheap side of Cybersecurity – via Open Source

On the cheap side of Cybersecurity – via Open Source. Valentin NECOARA – PKI&Cybersecurity Director. Agenda. 1. Essential tools. 2. Open Source to the rescue. 3. Caveats. 4. Why consider using MSSP. Essential Tools. And the list can go on…. Perimeter and Network.

dawsonw
Télécharger la présentation

On the cheap side of Cybersecurity – via Open Source

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. On the cheap side of Cybersecurity – via Open Source Valentin NECOARA – PKI&Cybersecurity Director

  2. Agenda 1 Essential tools 2 Open Source to the rescue 3 Caveats 4 Why consider using MSSP

  3. Essential Tools And the list can go on…

  4. Perimeter and Network

  5. Perimeter and Network Main functions offered: And the most important: They are FREE.

  6. Endpoint Security

  7. Security Data Intelligence • A huge amount of data flows from network security, endpoints. A SIEM is the obvious choice but there are alternatives: • Most of these solutions have limitations or integration development requirements

  8. Threat Intelligence

  9. Collaboration tools Tools to improve information dissemination and control: Open Atrium (collaboration suite) Redmine (project management) Request Tracker ( problem management) Wiki (information sharing) OSSIM (embedded ticket system)

  10. Vulnerability Assessment Lots of tools for lots of vulnerabilities:

  11. Penetration test tools • The offensive face of cybersecurity. Most common tools: • KALI Linux (previously backtrack). All In One offensive security Operating System. Packs a lot of opensource for penetration testing • Metasploit • Sqlmap • Zenmap (a nmap with GUI) • OWASP ZAP • Wireshark • w3af • Aircrack-NG(wireless) • and much much more...

  12. Caveats No one to blame when something does not work as it should Source code vulnerabilities not exposed can lead to real live system vulnerabilities Some open source projects just “end”. Not very straightforward update/upgrade mechanisms. However, lately this began to change.

  13. Why consider using MSSP

  14. Questions ? valentin.necoara@certsign.ro +40729.889.781 csirt@certsign.ro

More Related