Risk Management Webinar Series - MedmarcStep 1 Perform a Traditional Security Assessment Open source...

CYBER BREACH

Tactical Network Solutions LLC Proprietary Information info@tacnetsol.com 1

Preventing Bodily Injury and Property Damage

THE WORLD WE KNOW TODAY

INTERNET SECURITY CAMERAS

IoT BOTNET

WE WARNED YOU IN 2013

BUT YOU STILL GOT SUED

AND THE BEAT GOES ON…

MEDICAL DEVICES

THE STORY

VERSUS

THE COST

ELEMENT

IMPACTFraud losses, legal fees,new security measures

$Millions to $Billionsin costs

ELEMENT

Drop in stock & profits 5% to 10% drop in stock

ELEMENT

Drop in stock & profits 5% to 10% drop in stock

Brand valueBrand index scores immediately drop to negative

ELEMENT

IMPACT

Credit rating S&P cuts credit rating

ELEMENT

IMPACT

Job security Executive shake-ups

ELEMENT

IMPACT

Job security Executive shake-ups

Customers leave Some customers never return

DISCOVERING ATTACK VECTORS

AS EASY AS 1, 2, 3

Tactical Network Solutions LLC Proprietary Information info@tacnetsol.com

Step 1 Unpack the Firmware ImageOpen source tool called binwalk can unpack most firmware images.

Step 2 Analyze Executable Binaries and System FilesLook for low-hanging fruit like insecure coding practices and hidden private crypto keys.

Step 3 Fix, Compile, RepeatReplace insecure coding practices with secure methods. Remove all private crypto keys. Recompile code. Re-examine.

BUT MY SOURCE CODE IS SECURE!

HOW TO MITIGATE CYBER SECURITY RISKSIN CONNECTED MEDICAL DEVICES

Step 1 Perform a Traditional Security AssessmentOpen source tools such as Nmap, Nessus, and Metasploit can help.

Step 2 Perform Blackbox Testing with FuzzingOpen source tools: w3af, Wfuzz, Wapiti. Commercial tools: Defensics.

Step 3 Perform a Firmware EvaluationOpen source tool: binwalk, gdb, OllyDbg. Commercial tools: Centrifuge Security Platform.

WHO ISTACTICAL NETWORK SOLUTIONS

Founded 2007

Founders are former NSA/TAO employeesOffensive cyber operations focus12 Employees

MANAGEMENT TEAM

Terry Dunlap, Founder & CEONational Security Agency - 7 years experienceComputer Network Exploitation wireless tool developmentActing Branch Chief

Peter Eacmen, Co-Founder & CTONational Security Agency - 10+ years experienceComputer Network Exploitation tool developmentClose access operation supportEmbedded directly with USSOCOM unit at NSA

FIRMWARE EVALUATION TEAM

10 EmployeesFormer NSA Computer Network Exploitation specialists in firmware reverse engineering

CUSTOMERS

CONTACT

Terry DunlapPartnertdunlap@tacnetsol.com240-672-2945 (C)

Peter EacmenPartnerpeacmen@tacnetsol.com617-548-5384 (C)

Tactical Network Solutions LLC8825 Stanford Blvd., Suite 308

Columbia, MD 21045(443) 276-2990

Risk Management Webinar Series - MedmarcStep 1 Perform a Traditional Security Assessment Open source...

Documents

Nessus Agent 7.3 Deployment and User Guide · Nessus Agent 7.3 Deployment and User Guide ... Nessus

howto-linux-nmap - brazil.minnesota.edubrazil.minnesota.edu/examples/ex/howto-linux-nmap.pdf · This pdf shows the installation of nmap. basic nmap operation. and saving nmap output

The Need for Cybersecurity Standards...5 Operational Cybersecurity Testing Blue Team Assessment Tools • Nmap –network mapping, traffic generation • Q-Tip, Retina, Nessus –signature

Curso Nmap

Introduction to Network Penetration Testing · • Off site information gathering –Google / whois / Maltego / DNS • Network mapping –nmap / nessus • Host fingerprinting –queso

Secrets of Vulnerability Scanning: Nessus, Nmap and … · Secrets of Vulnerability Scanning: Nessus, Nmap and More Ron Bowes - Researcher, Tenable Network Security 1

Security Assessment Report OpenScape SBC V9miercom.com/pdf/reports/20151217.pdf · NMAP port scanner and Nessus vulnerability scanner were used to probe each system in the OpenScape

Nessus 8.5 User Guide - docs.tenable.comcp/opt/nessus/com/nessus/CA/cacert.pem

Nessus Basics

Ahighavailability, nextgeneration firewall for ...€¦ · as Nessus, Nmap and Metasploit. We had assigned the external in terface with a fixed IPaddress for this purpose. Our goal

Protected Environment at CHPC · • Qualys scans, Center for Internet Security (CIS) scans, Nessus, nmap, security onion, traffic trending with cacti • Central Syslog, logwatch

Nmap Guide

Nessus 8.6 User Guide - Documentation Center | Tenable™ · cp/opt/nessus/com/nessus/CA/servercert.pem

Integrate Nessus Vulnerability Scanner/SecurityCenter ...Nessus Vulnerability Scanner/SecurityCenter version Nessus 6.X series (Nessus 6.0 – Nessus 6.9.3) or Nessus Professional

Nmap: Scanning the Internet - Nmap - Free Security Scanner For

Nmap basico

Snort & Nmap

Implementing network defence using deception in a wireless … · 2017-11-29 · Netstumbler (Milner, 2002), Network Mapper (NMAP) (Fyodor, 2003b) and Nessus (Deraison, 2003a). Kismet

Nessus, Nmap and More

1 Nessus - NASL Marmagna Desai [592- Project]. 2 Agenda Introduction –Nessus –Nessus Attack Scripting Language [ N A S L] Features –Nessus –NASL Testing