Security Audit
![](images/host_scan_320.jpg)
Host Scan(5)
Host Scan or Port Scan is a process to use computer tool to probe a server or host for open ports. Such an application may be used by administrators to verify security policies of their networks and by attackers to identify network services running on a host and exploit vulnerabilities.
Show ALL
![](images/application_scan_320.jpg)
Application Scan(1)
Application Scan is a security assessment to website, web services and mobile application for any weaknesses, technical flaws, or vulnerabilities, evaluate the security of the applications.
Show ALL
![](images/network_scan_320.jpg)
Network Scan(1)
Network scanning helps to detect all the active hosts on a network and maps them to their IP addresses. Network scanners send a packet or ping to every possible IP address and wait for a response to determine the status of the applications or devices (hosts).
Show ALL
Host Scan - Password Complexity
Security Domain | Access Control Security |
---|---|
Risk Type | Password Complexity |
Risk Description | Password Complexity not enabled |
Fix |
#Access Control #Password Complexity #Windows
Host Scan - Time Synchronisation
Security Domain | Operation Security |
---|---|
Risk Type | Time Synchronisation |
Risk Description | Time synchronisation not enable |
Fix |
#Access Control #Password Complexity #Windows
Host Scan - Disable Everyone Access From Network
Security Domain | System Acquisition, Development & Maintenance |
---|---|
Risk Type | Disable Everyone Access From Network |
Risk Description | According to the Baseline IT Security Policy, data access rights shall be granted to users based on a need-to-know basis. |
Fix |
#Access Control #Password Complexity #Windows
Host Scan - lockout Threshold
Security Domain | Access Control Security |
---|---|
Risk Type | lockout Threshold |
Risk Description | Lockout threshold should be implemented |
Fix |
#Access Control #Password Complexity #Windows
Host Scan - Last Username Displayed
#Access Control #Password Complexity #Windows
Application Scan - Directory Browsing
Security Domain | System Acquisition, Development & Maintenance |
---|---|
Risk Type | Directory Browsing |
Risk Description | Directory Browsing enabled |
Fix |
#Access Control #Password Complexity #Windows
Network Scan - Ssl Version
Security Domain | Cryptography |
---|---|
Risk Type | Ssl Version |
Risk Description | SSL Version 2 and 3 Protocol Detection |
Fix |
#Access Control #Password Complexity #Windows
Modal title
![](data/local_security_policy_editor.jpg)