ISA Server
Home > Ask the Windows Security Experts > Hardening Windows Questions & Answers > Penetration testing for Windows systems
Ask The Windows Security Expert: Questions & Answers
EMAIL THIS

Penetration testing for Windows systems

Jonathan Hassell EXPERT RESPONSE FROM: Jonathan Hassell

Pose a Question
Other Windows Security Categories
Meet all Windows Security Experts
Become an Expert for this site


Advice for securing Windows
Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


>
QUESTION POSED ON: 17 April 2006
What do I need to know to give my system the most effective penetration test? Are there particular tools that are better than others? How safe should I feel if my system passes the test and when should I test again?

>
EXPERT RESPONSE
What you need to know is how to pick the most effective tools. I know quite a few people are enamored with Metasploit, and it was featured in a couple of articles here on SearchWindowsSecurity.com. There's also a great guide to penetration testing, including goals, processes, and tips/tricks provided by Corsaire here.

As far as what to make of the results of the penetration test, I'd feel comfortable if my desktop systems passed the tests once each quarter and my Internet facing servers passed the tests at least once a month, if not more often. These tests can be automated, so it's not at all a management problem to conduct these tests on servers on a more frequent basis.

View questions and answers from all of our Windows security experts here.


Sound Off! -   


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us    Add to Google


RELATED CONTENT
Hardening Windows
How do I track file access in Windows folders?
How to use Windows SBS to manage Internet security
How to manage network access for a Windows server
Set network user rights for Active Directory security
How to grant Microsoft Windows network permissions
Patch management and Windows Update aid in network setup
Intrusion prevention for Windows network security
How can I disable file transfer in MSN Messenger?
How can I recover lost files?
How do I bypass Windows Firewall to scan IP addresses?

Third Party and Shareware
Windows Mobile security tips for the on-the-go pro
Free security tools that can improve IIS security
Security tools that can boost Windows mobile security
Free security testing tools for Windows handheld devices
Metasploit 3.1 updates improve Windows penetration testing
Security tools that limit user logon in Windows
How can I use Process Explorer as a Web security tool?
New Windows security tool protects users from keyloggers: XecureCK
Top Windows security testing tips of 2007
Sniffing out security problems in Windows networks

Network Firewalls
Network security assessment for network infrastructure
Hacking for Dummies, 2nd edition: Chapter 9
How can I disable file transfer in MSN Messenger?
Hacking for Dummies: Test your firewall rules
Setting up IPsec bypass
Automatic exceptions: IPsec bypass
The hacker handbook: Eleven tips in eleven minutes
Wireless network security testing
Cisco patches flaws in multiple products
Rootkits: Managing the threat with prevention measures

RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice

HomeNewsTopicsITKnowledge ExchangeTipsAsk the ExpertsWebcastsWhite PapersIT DownloadsBlogs
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides enterprise IT professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective IT purchase decisions and managing their organizations' IT projects - with its network of technology-specific Web sites, events and magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Reprints  |  Site Map




All Rights Reserved, Copyright 2004 - 2008, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts