Scribd Logo
Upload

Welcome to Scribd!

  • Spec Feature

    Uploaded by

    Anh Tùng
    9 views4 pages

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as PDF or read online from Scribd
    Flag for inappropriate content
    9 views4 pages

    Spec Feature

    Uploaded by

    Anh Tùng

    Copyright:

    © All Rights Reserved
    Download as PDF or read online from Scribd
    Flag for inappropriate content
    of 4
    Tinh nang ky thuat IXIA Breaking Point STT | Tén trang bj | Tham s6, die tinh k¥ thuat 1 | Phan eimg yy chui chuyén dung Appliance: 941-031 PerfectStorm | | ONE Fusion, 1Gig/10Gig 4 port SFP+ HG trg 2 céng 10GE va 4 céng 1GE; Hé trg giao dign két a5 chudn USB, RJ45, COM. 2 | Phan mém_ | 1. He thong gia lap tan c6ng: - Sé lugng virtual ports: + Virtual system controller: 96 virtual ports + Cfc virtual blade: 8 virtual ports - Sé lugng virtual modules: 12 modules - License: 10G-Tier -10Gbps of throughput, 20M concurrent super flows. | 2. So luong gia 14 | - Sé lugng gia lap loai tan céng: 36,000+ total attacks 6,000+ exploits lugng ky thudt lan trénh: 100+ Evasion classes ~ S6 lugng miu Malwares: 30,000 + Malwares 3. Kha ning mé phéng: - Cae giao dién khéng day (véi IPv4) durgc mé phéng: + S1-U (eNodeB and SGW sides) + S1-MME (eNodeB side) + SGi (PDN side) + $5/8 (SGW and PGW sides) + S11 (MME and SGW sides) Vé6i cdc giao thite duge hé tro: +SIAP + GTP-C v1, GIP-C v2, GTP-U v1 + SCTP (over UDP or IP) - Cae ché d6 hogt dng khéng day duge mé phéng: + User Equipment +eNodeB/MME (GTPv2) +eNodeB/MME/SGW (GTPv2) + eNodeB (S1AP/ GTPv1) |+SGW/PGW +MME/SGW/PGW +PGW - Cae truy cp mang durge mé phéng: + IPv4/IPV6 Static Hosts | + IPv4/IPv6 External Hosts + IPv4 DHCP Client/Server +VLAN | + IPv4/IPv6 Router | + IPv4/IPv6 DNS | - Cac bai kiém tra duge mé phéng: + RFC 2544 Lab + Session Sender Lab + Multicast Lab + Lawful Intercept Lab + DDoS Lab - Cc loai tin céng DoS dya trén IP: +ICMP flood test case + ICMP fragmentation test case + Ping flood test case - Cac loai tan céng DoS dya trén UDP: + UDP flood test case + UDP fragmentation test case + Non-spoofed UDP flood test case - Cac loai tan céng DoS dua trén TCP: + Syn flood test case + Syn-ack flood test case + Data ack and push flood test case + Fragmented ack test case + Session attack test case - Céc loai tn céng lp tmg dung: + DNS flood attack case + Excessive verb attack case + Recursive GET Floods + Slow POSTs - Botnets: + Zeus + SpyEye + BlackEnergy + Duqu + Pushdo Cutwail Tinh nang kj thuat Rapid7 Nexpose STT | Tén trang bj Tham s6, dic tinh ky thuat 1_| Phan cig 2 | Phanmém | 1.D6 quét va quan ly t a) Cho phép Iya chon d6i tugng do quét str dung: | - Dia chi IP rigng ré hodc dai dia chi IP - Dja chi CIDR (CIDR Address) - Tén méy tinh (hostname) - Import tir file chita cée dia chi IP b) Cho phép quan ly cde nhém tai nguyén mém déo két hop: - Nhém Tinh (Static Group) - Nh6m dGng (Dynamic Group) c) H6 trg ra quét dic quyén cho: - File Transfer Protocol (FTP) - IBM AS/400 -CIFS - Post Office Protocol (POP) - Simple Network Management Protocol (SNMP) - Secure Shell (SSH) - Telnet - HTTP - SMTP d) H6 trg ra quét dic quyén cho cac hé théng co sé dit ligu bao gom: - DB2 | - Microsoft SQL. - MySQL Server - Oracle - PostgreSQL - Sybase SQLSever | e) Gidi phap cho phép tgo cdc nhém tai nguyén dong | bang cach thiét lap cc diéu kién bao gém: tén tai san, mite dé rdi ro ciia tai san, théng tin 16 hong (CVSS), kiéu tii nguyén, dai dia chi IP, hé diéu hanh, trang thai tiéu chuan PCI, tén dich vu, tan phan mém. g) Hé tro canh bao théng qua cdc phuong thite - SMTP - SNMP - Syslog 2. Quan ly 18 héng va rai ro: ~ Cung cAp sin cac mau ra quét bao mat bao gdm: ra quét tur_choi dich vy (Denial of service), ra quét phat hién (Discovery scan), ra quét Internet DMZ, ra quét Linux | RPMs , Microsoft hotfix, ra quét kiém thir tin cong (Penetration test), ra quét SCADA, ra quét Web | - Cho phép thiét lap cac trigger dé tur dong héa cde téc vu bao gom: Thue thi ra quét 16 hdng cho hé théng khi c 16 hong méi xuat hién va dat véi cdc tigu chi duge thiét lap (CVE ID, CVSS score, Risk score, Vulnerability Title, Vulnerability category). ~ Giai php thyc hign tinh toan chi s6 rai ro (Risk Score) cho cac 16 héng bao mat str dung cac tiéu chi gian I hong duge céng bo, mite d6 anh huéng cua 16 héng va mite d6 dé dang/phtte tap Khai thé 16 hong - Giai phap cung cap khuyén céo stra chita 18 hong ~ Giai phap c6 kha nang tich hgp véi céc hé thong cung cp théng tin khai thac tin céng 16i thiéu bao gom: ExploitDB va Metasploit Database. - Giai php cung cp chi tiét théng tin vé cdc tan cong Khai thée (Exploit) va ma d6c lién quan (Malware Kits) | lién quan téi 16 héng duge dinh danh. | - Kha ning tich hop theo quy trinh ty dng véi hé théng Metasploit dé thye hién validate (kiém tra kha nang tin | | cng, khai thc thanh céng) 15 héng bao mat. |= Cung cdp sin ticket management dé quan ly 16 héng | | theo ticket 3. Kiém toén chinh sich |- H6 try cae chuan nhu: PCI DSS, NERC CIP, FISMA | (USGCB/FDCC), HIPAA/ HITECH, Top 20 CSC, DISA STIGS, va CIS standards - H6 trg kiém tra chinh séch tiéu chudn SCAP va tity bién 4, Béo céo va trich xudt dit li - Cung cp sin va khéng gidi han cdc bao cdo: bao cdo téng hop (Executive Overview), bao cao 16 héng bio mat, bao cdo tuan thi PCI, bao cdo tuan thi chinh sach, Remediation Plan. - Bao cdo so sanh (Base-line/ Trend) cdc théng tin nhu xu huéng ri ro, cdc tai sin méi duge thém vao, cdc dich vu duge thém vao...gitta cdc lan ra qué - Hé trg cae dinh dang bao cdo bao RTF, HTML, Text va XML. : CSV, PDF,

    You might also like