Wednesday, April 19, 2017 22 months ago London, UK
CRESTCon & IISP Congress is a unique event that brings together leading technical and business information security professionals. Now in its fifth year, the event has become a key date in the industry calendar, attracting an impressive line-up of speakers and over 400 senior delegates. This year the length of the day will be extended to incorporate further networking and entertainment. Delegates will include senior security, risk and compliance managers from a wide range of public and private sector organizations, along with security consultants and business directors working in the technical information assurance and response industry.
Knowing what you have can be a challenging problem. System diagrams can be outdated or non-existent, the person who knew the system has left or that latest acquisition means you now have another companies worth of assets to account for.
Traditional active mapping techniques, while accurate, can be invasive, resource intensive to produce and typically rely on a single technique to produce enumeration results. For overloaded or fragile systems, such as SCADA / ICS environments, active techniques can introduce stability issues and the risk of downtime.
Passive mapping techniques offer solutions to some of these issues but individual passive methods can be inaccurate or lacking information. It is true of both active and passive techniques that the tools available so far typically operate in the network domain and do not capture non-Ethernet communications.
Project Vision is designed to overcome these issues by offering an adaptive system enumeration option capable of mapping network and non-network based systems. This presentation will share our experiences conducting system mapping and our methodology for fusing together active and passive data sources, including some novel sources of system information. This talk is intended to discuss the technical issues of system mapping, the benefits of a blended approach to system enumeration data and introduce MWR’s Vision enumeration tool with demonstrations of Vision’s capabilities.
You can register for tickets here.