Security Testing and so on...
I'm a tad confused.
I am a Windows man (not a fan, just I specialise in Windows) and a friend has started up a business and wanted to know if I could scan his network for possible security holes and intrusion holes, and patch it for him.
At this stage he hasn't told me anything,
so I'm assuming a small office router with a leased line or broadband, assuming an inbuilt firewall, and several machines behind it, varying from Windows XP Pro to Windows 2k3 Server Edition.
I'm assuming:
- Windows updates.
- Registry tweak.
- Firewall rules.
- Peer Monitoring software on the PCs.
But the thing is you see, I'm a tad lazy
And the registry tweaking may take awhile, since I'm not aware of any 'standard things to tweak' and windows update is easy, firewall rules its relatively easy, but port scanning and see what's open, and peer monitoring so there are no connections to known 'bad things'.
Advice?
