Objectives Back to Top_x000d_
ABC Invitation Design and XYZ Invitation Printing have decided to merge into one company, A2Z Invitations. ABC is a virtual company with a proprietary website that allows customers to do some preliminary work on invitations and then consult with a designer for the final product. XYZ is a traditional company with a system that allows customers to submit designs and track their orders. It also has a contact management and invoicing system. ABC will be moving its application into the XYZ data center and will be using all of XYZ’s back end systems._x000d_
Both companies have experienced data breaches in the past and do not want to have them in the future. A2Z has hired you to do a security analysis of its new network and to recommend how it can be set up in a secure manner. It has budgeted for a capital expenditure (outside of man hours) of $250,000 for hardware and software and $25,000 every year for additional security measures._x000d_
Guidelines_x000d_
Back to Top_x000d_
The Statement of Work objectives are:_x000d_
_x000d_
Perform online reconnaissance on XYZ to see what information is available to an attacker. No social engineering of employees is allowed. Use the Week 1 You Decide as the data for this section._x000d_
Perform an analysis of the current XYZ network, using the current network diagram and nmap report Diagram; NMAP and files are below._x000d_
Check the user’s password strength. Use the Week 3 You Decide as the data for this section._x000d_
Redesign of network. Current network below._x000d_
System hardening procedures for both IIS and Apache (even if they only use IIS)._x000d_
Three complete security policies. Use the Week 5 writing assignment as your starter policy for this section._x000d_
Template for future security policies._x000d_
Your paper must conform to all requirements listed below._x000d_
_x000d_
Requirements_x000d_
_x000d_
Papers must be at least 5–10 pages in length, double-spaced._x000d_
Papers must include at least three references outside of the text._x000d_
Paper and references must conform to APA style, including:_x000d_
cover page;_x000d_
header with student’s name and page number; and _x000d_
sections including Introduction, Body, and Conclusion/Summary._x000d_
_x000d_
Milestones_x000d_
_x000d_
Each You Decide and other write-ups should be used as the raw material for this report. This report is the analysis of that data._x000d_
_x000d_
Week 1 You Decide_x000d_
Week 3 You Decide_x000d_
Week 5 writing assignment_x000d_
_x000d_
Grading Rubrics_x000d_
Back to Top_x000d_
Category Points_x000d_
Recon Report_x000d_
IP Addresses_x000d_
Mail Servers_x000d_
WHOIS_x000d_
CNAME 20_x000d_
Current Network Diagram Analysis 20_x000d_
Quantitative Analysis Ranking of Assets 20_x000d_
NMAP Analysis 20_x000d_
Password Cracking Report 20_x000d_
Redesigned Network Diagram 20_x000d_
Web Server Hardening Procedure IIS 20_x000d_
Web Server Hardening Procedure Apache 20_x000d_
Security Policy Template 20_x000d_
Three Complete Policies 20_x000d_
Three Outside References 10_x000d_
Spelling, Grammar, and APA Formatting 10_x000d_
Total 220_x000d_
Best Practices_x000d_
Back to Top_x000d_
You should begin working on this course project on Day 1._x000d_
Official XYZ Network Diagram_x000d_
Back to Top_x000d_
Image Description_x000d_
The official network diagram is the network configuration XYZ printing thinks it has for its network. It shows logical groupings of network gear, servers and workstations. Currently it has a single firewall directly connected to the main company router. All the different departments, business development, administration and invitation consulting, are connected to that router. All IT systems including those that run the printing system, accounting and invitation designs are also connected through that central router. No security systems such as IDS or VPN systems are installed on the network. As part of the project you should analyze the network diagram for strengths and vulnerabilities and report your findings back to management._x000d_
Press the ESC key to close the image description and return to lecture._x000d_
Results of NMAP Scan_x000d_
Back to Top_x000d_
Above is the official network diagram of XYZ (pre-merger with ABC). All servers are supposed to be Windows 2003. XYZ uses a private IP internally of 192.168.x.x. Below are the results of the NMAP scan done as part of the consulting agreement with infosecwizards._x000d_
Starting Nmap 5.00 (http://nmap.org) at 2009-MM-DD 23:12 UTC _x000d_
Interesting ports on XYZDomainController at (192.168.0.1): _x000d_
Not shown: 997 filtered ports _x000d_
Port State Service Product Version Extra info_x000d_
135 tcp open msrpc _x000d_
139 tcp open netbios-ssn _x000d_
427 tcp open svrloc _x000d_
445 tcp open microsoft-ds _x000d_
_x000d_
Service Info: OS: Microsoft Windows 2003 Server or XP SP2_x000d_
Interesting ports on XYZInviteDesign at (192.168.0.2):_x000d_
Not shown: 997 filtered ports_x000d_
Port State Service Product Version Extra info_x000d_
135 tcp open msrpc _x000d_
139 tcp open netbios-ssn _x000d_
427 tcp open svrloc _x000d_
445 tcp open microsoft-ds _x000d_
_x000d_
Service Info: OS: Microsoft Windows 2003 Server or XP SP2_x000d_
Interesting ports on XYZAcct at (192.168.0.3):_x000d_
Not shown: 997 filtered ports_x000d_
Port State Service Product Version Extra info_x000d_
135 tcp open msrpc _x000d_
139 tcp open netbios-ssn _x000d_
427 tcp open svrloc _x000d_
445 tcp open microsoft-ds _x000d_
_x000d_
Service Info: OS: Microsoft Windows 2003 Server or XP SP2_x000d_
Interesting ports on XYZprinting at (192.168.0.4):_x000d_
Not shown: 997 filtered ports_x000d_
Port State Service Product Version Extra info_x000d_
135 tcp open msrpc _x000d_
139 tcp open netbios-ssn _x000d_
427 tcp open svrloc _x000d_
_x000d_
Service Info: OS: Microsoft Windows 2003 Server or XP SP2_x000d_
Interesting ports on XYZwebsrv at (192.168.0.5):_x000d_
Not shown: 997 filtered ports_x000d_
Port State Service Product Version Extra info_x000d_
135 tcp open msrpc _x000d_
139 tcp open netbios-ssn _x000d_
427 tcp open svrloc _x000d_
1025 tcp open NFS-or-IIS _x000d_
_x000d_
Service Info: OS: Microsoft Windows 2003 Server or XP SP2_x000d_
(The 1656 ports scanned but not shown below are in state: closed)_x000d_
Interesting ports on XYZChat at (192.168.0.6):_x000d_
Port State Service Product Version Extra info_x000d_
22 tcp open ssh _x000d_
80 tcp open Apache _x000d_
111 tcp open rpcbind _x000d_
6000 tcp open X11 _x000d_
32771 tcp open sometimes-rpc5 _x000d_
_x000d_
Service info: OS: Linux 2.5.25 – 2.6.3 or Gentoo 1.2 Linux 2.4.19 rc1-rc7)_x000d_
Service detection performed. Please report any incorrect results at http://nmap.org/submit/._x000d_
Nmap done: 6 IP address (6 hosts up) scanned in 64.27 seconds
