Hackers always want to know as much information, such as: whether the network, internal network architecture and the state of safety precautions.Once the hackers who have experienced eye on your network, they first will analyze your system.That is why we say that hackers use the "rules of the game" is the best way to deal with the reasons for hackers.To look to the eyes of hackers, network security can often find a lot of potential security vulnerabilities.This not only provides a look at the different perspectives of your network systems, and so you can from your enemy, that is, the angle of hackers to guide you to take the most effective network security measures.Below, we look at the process of network analysis.This process is to use open source tools and related technologies.
Gather information using open source tools
First, log Whois.com Web site to find your business domain name, search results will show you the network system used by the DNS server.And then use some software tools, such as: nslookup, to further tap the DNS server details.
Next, you need to move on in the business of public Web sites and you can find the anonymous FTP server.Note that the information you need to focus on the main are: domain name, IP address of these domains, all of the information intrusion detection system, user name, phone number, email address, physical location, has released security policies, business partners, information, and the new M & A business information.
In addition, the search in your operation, we must pay special attention to these sites has been shown and did not show information.Best, to these pages into your computer, then use Notepad to open, view page source code.In general, the View page source code a lot of information, which is some site visitors who wish to shield the source code of the reasons.In the source code file, you may be able to understand the way web developers establishment of the station: the type of software they use and software versions, and web site structure, and sometimes even able to find some personal information for webmasters.
Business partner's site or some new sites that M & A business is often the key points of hacking.The site is an indirect invasion of the target site the best starting point, easily overlooked by webmasters, to hackers who created a lot of opportunities.If you do not have enough vigilance in this regard, negligence, it is a new rush to the new website and business partners to link up your own site, often have serious consequences to your site have an extremelybig security threat.In this case, security is more important than the business issues, we must ensure safe operation.
Network from the external review
With the above information collection, you can begin to examine your network.You can use the path tracing command to view your network topology and access control-related settings.You will get a lot of information on the characteristics of the switch used to bypass access control devices.
Note that the command of the feedback results will be used by the operating system because of different different.UNIX operating systems use UDP, you can choose to use ICMP; the default Windows operating system to respond with ICMP requests (Ping).
You can also use open source tools to manage a large number of ping sweep, the implementation of TCP / UDP protocol scanning, OS detection.The aim is to understand, in the eyes of those outside visitors, the operation of your network status and some basic features, features.Therefore, you need to test your network, what ports and services open to external visitors or available, the external visitors can learn to use your operating system and some programs, most versions of information.In short, is to understand how your network open to those outside visitors which port or services, which reveal the basic information site.
Before you start the work, you must first have sufficient authority to access the entire network system and its investigation, analysis.Do not you know this information to the evildoers.Remember: security is an implementation process, not just a technology.