Análisis de vulnerabilidad utilizando herramientas de inteligencia de código abierto (OSINT). Caso de estudio sistemas de información ESPAM MFL
The objective of this investigation was to perform a vulnerability analysis oriented towards the information systems at ESPAM MFL, supported by open-source intelligence tools. For its execution, four specific objectives were met; in the first objective, through the bibliographic review technique, an...
Сохранить в:
| Главный автор: | |
|---|---|
| Другие авторы: | |
| Формат: | masterThesis |
| Язык: | spa |
| Опубликовано: |
2022
|
| Предметы: | |
| Online-ссылка: | http://repositorio.espam.edu.ec/handle/42000/1683 |
| Метки: |
Добавить метку
Нет меток, Требуется 1-ая метка записи!
|
Добавить метку | Итог: | The objective of this investigation was to perform a vulnerability analysis oriented towards the information systems at ESPAM MFL, supported by open-source intelligence tools. For its execution, four specific objectives were met; in the first objective, through the bibliographic review technique, an exhaustive search of the OSINT tools and their application in the area of Cybersecurity was carried out through metasearch engines; in the second objective, a virtual interview was applied to the members of the Technology Unit, in order to know the state of the information systems and the methodologies implemented to mitigate possible vulnerabilities, later the OSINT tools to be used were defined, which were Hunter, Spyse, Shodan, Siteliner, Crt.sh, Website informer, Zoom Eyes, WhoIs and Domain dossier; in the third objective, the scanning of vulnerabilities in the information systems was carried out, showing risk reports in the assets of the institution; and in the last objective, as a solution measure, a proposal for security policies was presented, which will allow the interested parties to take actions to safeguard the integrity of their information. It is also worth mentioning that the research was based on the methodology by objectives (APO), which aims to determine joint objectives and provide feedback on the results. |
|---|