Security

Information and scripts related to LDSS

Agentless Vulnerability Scan — by Jack Coates — last modified 2008-02-29 08:23

How to run a vulnerability scan against a network of PCs without agents on them.

Behavior Matrix — by Jack Coates — last modified 2007-10-29 10:57

Who's got control over what in a single-core, multi-admin environment

Custom Definitions — by denny — last modified 2007-10-29 16:45

LANDesk custom definitions that can be imported into any LDMS or Security Suite solution.

Delete Registry Values with Custom Definitions — by Jack Coates — last modified 2008-10-08 15:40

Create and Edit are easy, but Delete takes more work

F-Secure Updating — by lisaru — last modified 2007-10-31 11:48

How to update F-secure with LANDesk

How to get LDAV to work on WinPE — by Luiz Faro — last modified 2008-07-07 09:52

All right, your end-user messed up, and got a virus on the boot sector. Or you are a careful guy and want your OS to be virus free before imaging it. How can you do it without booting the client's OS ? This is a step-by-step on how can this be achieved.

Install HIPS to offline machines — by Jack Coates — last modified 2008-12-11 10:17

No core? No problem.

Maintenance Window Reboots — by Jack Coates — last modified 2008-09-24 17:03

How to enable reboot during a maintenance window and block it the rest of the time

Network World discussion on NAC, 7/08 — by Jack Coates — last modified 2008-07-24 16:28

Security experts Joel Snyder and Richard Stiennon debate the pros/cons of NAC, with Snyder arguing that NAC is extremely useful and Stiennon saying it isn't worth the expense.

NIST — by Jack Coates — last modified 2007-10-29 10:59

 

Query on Vulnerability Severity — by jgiffard — last modified 2007-10-29 10:56

Modify the schema to allow access to severity

Roger Johnston's Security Maxims — by Jack Coates — last modified 2008-09-27 21:47

Spot on. Linked via Bruce Schneier's blog because there's a good discussion there.

Run AV Scans in Safe Mode — by Jack Coates — last modified 2008-09-24 17:08

If a boot virus is keeping the machine from getting past Safe Mode, services won't load. Here's a workaround

Secunia — by Jack Coates — last modified 2007-10-29 11:04

 

SecurityFocus Alerts — by Jack Coates — last modified 2007-10-29 11:05

 

Theft recovery helper VBScript — by Jesse McCoppin — last modified 2008-12-15 14:55

Theft recovery VBScript - Helps you find a stolen computer by asking XML.SHOWMYIP.COM for public-facing IP/Hostname and placing it in Inventory.

TippingPoint — by Jack Coates — last modified 2008-09-24 12:00

IDS Vendor

U.S. National Vulnerability Database — by Jack Coates — last modified 2008-07-24 16:32

The great thing about standards is that there's so many to choose from

Vulnerability scanning — by Jack Coates — last modified 2008-09-19 15:33

Through a vulnerability scanner darkly do we see

What's in that Security Threat? — by Jack Coates — last modified 2006-12-01 09:37

How to analyze or modify the Security Threat scripts

Why popular antivirus apps 'do not work' — by paul — last modified 2007-10-29 11:04

Antivirus applications from Symantec, McAfee or Trend Micro -- the three leading AV vendors in 2005 -- are far less likely to detect new viruses and Trojans than the least popular brands.

Softmon Realtime Spyware Scanning OFF/ON — by Jesse McCoppin — last modified 2008-10-30 16:10

Custom Vulnerability definitions to enable or disable Softmon's "Realtime Spyware Scanning" ----- I use this instead of the built-in Security Threat definition because I want to separately control spyware scanning for fast and slow computers. -------------- Simply changes the HKLM\Software\LANDesk\ManagementSuite\WinClient\SoftwareMonitoring 'watchForSpyware' between 0 and 1