Host Assessments

Organizations often need an in-depth review of hosts associated with a specific application, such as a large financial system, or a group of systems, such as the hosts in the DMZ.  PatchAdvisor will provide in-depth analysis of all hosts associated with the application to uncover vulnerabilities that might not be readily apparent from a network assessment.  Typical activities in a Host Assessment include enumerating security patch levels for each operating system and each application currently running or installed, identifying improper file system permissions, verifying authentication lock-out and complexity policies, enumeration of host-level auditing policies, and an analysis of application configuration settings.

Trust relationships are also analyzed within hosts to ensure that there are no trust relationships that exist outside of the application.  This would include investigating any Windows-based Domain architectures and UNIX-based “rhosts” trust relationships.

During Host Assessments, applications and databases are reviewed to ensure the appropriate security controls have been implemented.  This might include analyzing database structures and permissions, validating that row-encryption or other mitigating techniques have been used to appropriately secure sensitive data, validating account-lockout policies and password complexity requirements, as well reviewing any application configuration files.

For more information contact sales@patchadvisor.com