Step 4: Tools you can use to test if you're vulnerable

• Port scanners such as SuperScan and nmap to find out what's running on your wireless system -- it's the first step to breaking in.
• Vulnerability scanners such as NeWT, LanSpy, or LANguard to see what's easily exploitable.
• Network analyzers such as CommView for WiFi and AiroPeek to view cleartext information, where you're browsing, who you're talking to and more, all as it passes through thin air.
• A penetration application such as Metasploit to actually exploit the operating system and application vulnerabilities found. However, quite often all that's needed is a basic command prompt to establish null sessions, map drives, browse shares and more
• Password crackers such as Proactive Password Auditor, LC5, pwdump3, and NetBIOS Auditing Tool (NAT) crack your Windows passwords once that coveted remote connection is made.

Some of the bad guys have these tools, but odds are just as many -- if not more -- aren't as sophisticated. However, if you're like me, you don't want to take any chances. Perhaps it's time to lock those wireless laptops down a little tighter?

How to lock down laptops that connect to hotspots

 Home: Introduction
 Step 1: Understand what there is to lose and who's stealing the loot
 Step 2: Secure your computer to prevent attacks in the first place
 Step 3: Secure your communications link
 Step 4: Tools you can use to test if you're vulnerable

ABOUT THE AUTHOR:

Kevin Beaver Kevin Beaver is an independent information security advisor with Atlanta-based Principle Logic LLC. He has more than 17 years of experience in IT and specializes in performing information security assessments. He has authored five information security-related books including Hacking For Dummies (Wiley), the brand new Hacking Wireless Networks For Dummies, and The Practical Guide to HIPAA Privacy and Security Compliance (Auerbach). You can reach Kevin Beaver at kbeaver@principlelogic.com. Copyright 2005 TechTarget

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Encryption SQL Server security: Lock it down with 10 IIS tips Step-by-Step Guide: Securing Web servers StartupRun Locking down laptops that connect to hotspots Step 1: Understand what there is to lose and who's stealing the loot Step 3: Secure your communications link Step 2: Secure your computer to prevent attacks in the first place Disallowing IE or Outlook from uploading data SearchSecurity.com's Web Security School Lock down IIS Encryption Research Protocols New IIS 7 security adds value to Windows Server 2008 Data protection on the Web: Windows SSL security and other myths Windows Server 2008: Looking good on the security front Windows Process Activation Service in IIS 7.0 Modular architecture in IIS 7.0 aids Web server security Web security tactics that harden Windows networks Internet Information Services security: Five tips in five minutes Keeping your IIS server secure Step-by-Step Guide: Securing Web servers Locking down laptops that connect to hotspots Micorsoft Windows Firewall Down the chimney, through the firewall: Holiday quiz Password cracking, network rights and Windows Firewall expert advice Solving Windows networking security issues: Security expert roundup Adding new applications in Windows Firewall Microsoft Windows Firewall security Scan IP ports without Windows Firewall restrictions How do I bypass Windows Firewall to scan IP addresses? Hacking for Dummies: Test your firewall rules Managing Microsoft's Windows Firewall Configure Vista Firewall to support outbound packet filtering

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary ISA Server  (SearchWindowsSecurity.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary